Job Description

Supporting the IHH SG Data Protection Officer (DPO), the Deputy DPO is responsible for the delivery of IHH SG Data Protection Management Program (DPMP). The DPMP ensures compliance with the PDPA, and its work streams include policy, people and process management.

Under policy management, the Deputy DPO will keep abreast of the latest regulatory developments, provide timely updates and ensure that relevant changes are reflected in IHH SG’s Data Protection policy, procedures and Notice.

Under people management, the Deputy DPO will work with the Learning & Development team to create and/or update IHH SG-wide e-learning modules for employees, as well as lead the monthly DPO Committee meeting by planning meeting agenda to raise awareness on pertinent Data Protection related issues and preparing training materials to enhance knowledge of appointed Committee representatives (Data Protectors), to foster a strong data protection culture and improve organizational compliance.

Under process management, the Deputy DPO will provide advisory support to business unit and project teams on the creation and maintenance of data inventories, risk and impact assessments, solutions and programs to mitigate and manage identified risks and impact, contract reviews, workflow optimization and guidance on Data Protection by Design (DPbD), to meet periodic reporting requirements and achieve operational compliance. The Deputy DPO will also prepare IHH SG for Data Protection audit exercise to achieve Data Protection Trustmark in 2025.

On a day-to-day basis, the Deputy DPO will handle personal data access and correction requests, manage data protection related queries, feedback, complaints, incidents and breaches, as well as liaise with the PDPC on personal data protection matters, where necessary.

Key accountabilities

Lead Policy management
People management
Process management
Data Protection Trustmark
Incident management and handling of requests

Qualifications & Experience

Legal, Compliance, IT or Business Management Degree
10 years of experience in governance related roles
5 years of experience in healthcare (preferably only)
Good understanding of the PDPA and its application. At least one IAPP certifications, CIPM, CIPP/A or CIPP/E preferred