Deskripsi Pekerjaan
We are seeking a highly skilled and detail-oriented Data Privacy Protection Officer to join the administrative team at Unihealth-Parañaque Hospital and Medical Center. In this pivotal role, you will serve as the primary guardian of our organization's data, ensuring the confidentiality, integrity, and availability of sensitive patient and employee information. As the healthcare landscape becomes increasingly digital, your expertise in compliance and risk management will be vital in maintaining trust and adhering to local and international privacy standards.
The ideal candidate will be responsible for developing robust privacy frameworks, conducting regular compliance audits, and overseeing data subject access requests. You will act as the liaison between the hospital and regulatory bodies, ensuring that all data processing activities align with the Data Privacy Act of 2012 and other relevant healthcare regulations. If you are a proactive professional with a passion for data security and healthcare compliance, we encourage you to apply.
Tanggung Jawab
- Develop, implement, and maintain comprehensive data protection policies and procedures in accordance with the Data Privacy Act of 2012.
- Conduct regular privacy risk assessments, data mapping exercises, and internal audits to identify potential vulnerabilities.
- Oversee the management of Data Subject Access Requests (DSARs), ensuring timely and accurate responses.
- Coordinate with the IT department to ensure technical controls are in place to protect sensitive information.
- Train hospital staff, management, and stakeholders on best practices for data handling and privacy compliance.
- Monitor changes in data protection laws and regulations to ensure the hospital remains fully compliant.
- Lead the incident response process in the event of a data breach, including notification to authorities and affected parties.
Kualifikasi
- Bachelor's degree in Information Technology, Law, Business Administration, or a related field.
- At least 2-3 years of experience in data privacy, compliance, or a similar regulatory role within the healthcare or corporate sector.
- Familiarity with healthcare data privacy standards (e.g., HIPAA) and local data protection laws.
- Strong understanding of data classification, risk management, and privacy principles.
- Excellent verbal and written communication skills, with the ability to train and educate others effectively.
- Detail-oriented with strong analytical and problem-solving abilities.
- Ability to work independently and manage multiple priorities in a fast-paced hospital environment.