Job Information
Fresenius Medical Care North America Global Digital & Privacy Counsel in Praha 6, Czech Republic
Goal of function:
The Digital & Privacy Law Counsel will play a critical role develop, monitor and secure compliance of data processing activities with applicable privacy laws in the context notably of patient care and development of active medical devices and software solutions. Moreover, he/she will advise on the evolving international regulatory landscape for digital products and services across the globe and will support the development of new products and services involving these technologies.
TASKS:
Informs the respective Fresenius Medical Care entity or entities and their employees, who carry out data processing activities, of their obligations under applicable data protection laws
Embeds privacy by design and by default in the processes and projects involving the processing of patient data of the different Fresenius Medical Care entities including the support for definition of privacy compliant product design in partnership with IT security, the implementation of necessary privacy safeguards (drafting and negotiation of data processing agreement, provision of privacy notice / consent, conduct of data protection impact assessments, etc.)
Drafts, Reviews and negotiates data processing and transfer agreement with vendors, confidentiality agreements (including completion of transfer impact assessments)
Enhances the awareness of the company and dedicated teams via the conduct of any targeted training / awareness activities related to the protection of personal data
Acts as a resident legal expert and resource for the different Segments/Functions and project teams within FME on all regulatory aspects of use of Information Technology, digital capabilities, Artificial Intelligence and machine learning in projects related to use of IT Tools for employees and Data and Digital Solutions for Software & Digital Architecture
Closely monitors legal developments in the area, and/or interacts with the responsible government affairs
Identifies and analyzes legal risks and options of projects in the digital & privacy environment
Supports FME’s digital strategy and agenda and supports development of next generation products & services
Advises the business on any initiative involving the processing of personal data including embedding privacy by design and by default
REQUIREMENTS:
Law degree obtained in an EU jurisdiction
CIPP/E or CIPP/US or CIPM certification desired
Min. 2 years of experience
Strong business ethics, with the ability to remain impartial and report all non-compliances.
Sound and practical business judgment, especially in giving pragmatic and risk-based advice in grey areas where the application of traditional regulations to new technologies is unsettled in law and practice.
Excellent organizational, written, and verbal communication skills
Ability to build and maintain strong relationships with demanding internal clients and stakeholders.
Ability to organize, prioritize, and manage a high-volume workload in a fast-paced and demanding work environment.
Collaborative team player combined with the ability to work independently.
Knowledge of data processing operations in healthcare and Medtech industry (not mandatory but appreciated)
Expert knowledge of GDPR, national data protection and IT laws
Excellent English, other languages an advantage
Excellent knowledge of MS-Office (especially Excel); experience with document/knowledge management software (especially SharePoint and Confluence)