Posted in: Administrative and Support Services in Chicago | Posted: |
Job Description
McDonald’s Privacy Team is a global team within the Legal & Compliance Department comprised of lawyers and other professionals located in the US and the EU. In collaboration with other global teams (e.g., Global Cyber Security, Enterprise Data Governance) and McDonald’s market legal teams, the Privacy Team develops, operates and manages McDonald’s global privacy program and advises on US and global initiatives involving personal data.
The Senior Privacy Analyst will be responsible for the development, implementation, maintenance, day-to-day oversight and management of the operational aspects of McDonald’s global privacy program. The ideal candidate is comfortable working collaboratively within cross-functional legal and business teams and using technology to improve the efficiency of our privacy program, and is continuously learning and maintaining up to date knowledge of US and global privacy laws (e.g., CCPA/CPRA, GDPR). This role will also support various privacy activities to help protect and safeguard the customer, employee, franchisee and supplier personal data that is entrusted to McDonald’s.
Responsibilities
Assist in the development, implementation and ongoing maintenance of global privacy policies, procedures, requirements and notices.
Conduct annual assessments of McDonald’s global privacy program, identify areas of opportunities and design and implement improvements to help ensure McDonald’s compliance with global privacy laws.
Serve as the subject matter expert for and manage our OneTrust Privacy Management Platform including training and assisting business teams and market legal teams in their use of the platform and working with Global Cyber Security team to maintain the platform.
Support the maintenance of McDonald’s Data Privacy Framework certification.
Develop and deliver, with input from key stakeholders, enterprise-wide and role-based privacy trainings.
Triage potential privacy incidents and determine the appropriate investigations, responses, and escalations needed.
Collaborate with the Government Relations team to review and assess proposed privacy-related legislation.
Work in partnership with the Global Cyber Security team to manage McDonald’s Individual Rights program.
Work in partnership with the Enterprise Data Governance team to maintain records of processing activities and data processing inventory.
Engage and liaise with other legal and business teams to provide guidance on and ensure privacy considerations are integrated into project planning and day-to-day operations.
Provide privacy guidance and requirements to business teams for the onboarding & offboarding of third party vendors.
Manage and maintain privacy metrics reporting.
Manage external-facing Contact Privacy inbox.
Conduct privacy risk assessments.