A Privacy Program Manager is responsible for managing and operationalizing a corporate privacy program across the company. Their most important responsibility is to be ACCOUNTABLE for the safekeeping and responsible use of personal information - not just to investors and regulators but to the everyday consumer, vendors, partners and employees.
4 key responsibilities include;
Identify privacy obligations for the company
Identify business, employee and customer privacy risks
Identify existing documentation, policies and procedures.
Create, revise and implement policies and procedures that effect positive practices and together comprise a privacy program that is aligned with corporate strategy. Dont forget that your corporate policies have a lifecycle -
Draft - inward facing policies, aligned and consistent across the organization
Approved - from decision makers and stakeholders
Disseminate and train all employees
Review and revise policies regularly. In all our clients this process is done in a quarterly basis or immediately after a breach or the business changes for example a merger or acquisition.
Continuously maintain and improve the privacy program
5 Goals of a Privacy Program
A successful privacy program will integrate privacy requirements and procedures into the functional areas across and organization.
Demonstrate compliance with applicable laws and regulations
Promote customer trust and confidence
Enhance an organization’s reputation
Facilitate privacy program awareness with employees, customers, partners and service providers.
Respond to privacy breaches