Privacy Officer

• Strategically partners with and advises the business, including the Commercial, Marketing and Medical teams and their senior management, to ensure compliance with all privacy requirements in EU and ROW, including GDPR , AI Act and local privacy regulations where Pharming operates. Liaises with the external DPO .

• The Privacy Officer is a member of the EU and ROW BI team, in charge of privacy  matters in EU and ROW.
• Together with other members of the EU and ROW BI team, contributes to the design, implementation, maintenance and monitoring of the elements in the Global Business Integrity program related to data privacy in the EU and the RoW with the objective to prevent, identify, mitigate and manage compliance risks for Pharming.
• Together with the Compliance Officers and as directed by the Executive Director Corporate & Healthcare Compliance EU & RoW, contributes to effective compliance risk assessment and management, trend analysis and root cause analysis, each time with a primary focus on privacy compliance in the EU and the RoW, by:

• • designing, implementing and testing adequate internal controls;
  • driving and overseeing the monitoring plan, including following-up on monitoring results, analyzing trends and root causes, contributing to remediation plans, and updating policies and processes, if necessary; and
  • participating in compliance-related investigations;
  • managing data breaches when needed, in liaison with the DP 

• Together with the other members of Business Integrity, coordinates the Intranet page of Business Integrity.
• Co-drives business integrity governance, including if needed via effective business integrity committee meetings.

• Reports on a regular basis, and without undue delay in case of incidents, to the Exec Director Corporate & Healthcare Compliance EU & RoW and, whenever appropriate, the Chief Ethics & Compliance Officer and management, on the risks related to privacy in the EU and the RoW.

• Monitors developments in privacy regulations and practices in the EU and RoW relevant to Pharming. Regularly educates and informs the business, senior management and other staff members, together with the other team members, on matters related to privacy related legal and compliance developments.

• Prepares, updates and maintains ROPAs and DPIAs, but also various gap assessments and risk analysis as deemed necessary.

• Drafts and reviews DPAs, LIA, PIAs. Drafts Sops and policies related to data privacy. Trains on  data privacy matters.

• Participates in cross functional project teams, in order to assess and advise on privacy aspects and compliance of the project.

Qualifications:

• EU Bachelor Degree (Master degree is a plus). Advanced data privacy certification or equivalent (IAPP is preferred).
• A senior compliance executive with 8+ years of experience in combined corporate compliance and data privacy gained in the EU, with experience in the life sciences industry.
• Expert knowledge of prevailing GDPR standards and practices, as well as AI Act’s.
• Experience of data privacy regulations and practice in Pharma/Biotech healthcare compliance outside of EU and the US, preferably including the APAC region, will be a plus.
• Flexibility as well the ability to work effectively in a senior compliance role in global cross-cultural and cross-functional teams.
• Hands on attitude/ team spirit
• Ability to work functionally with external providers
• High risk awareness and risk management skills
• Proficient in Microsoft Office
• Fluent in English; Dutch is a plus
• Can be based in NL, France, Germany, UK.
• Partly remote, depending on country of residence.