Why is this role important?
A Constant Learner- who is bright, curious, open to new ideas and interested in our business?Insightful- giving new perspectives and identifying paths beyond the status quo?
Engaging- a person who makes connections and builds trust?Motivated- determined to pursue excellence, deliver on commitments and achieve success?
Company Overview :
Every day over 134,000 full-time and part-time Loblaw colleagues serve customers in more than 1,000 corporate and franchised stores from coast to coast.
This makes Loblaw one of Canada’s largest employers. Retail is fast-paced and constantly changing success starts with a deep understanding of the customer and involves doing what it takes to deliver and measurable results.
Through its five operating divisions, Loblaw strives to be the best in food, health and beauty. We believe that by rapidly expanding our use of data-driven insights and consistently delivering process and efficiency excellence, we will strengthen our core business while enabling ongoing investments in our future in areas like everyday digital retail, payments and rewards, and connected healthcare.
As we drive towards this vision of our future, we are grounded by a commitment to social responsibility and compliance, and driven by a shared set of values and culture that inform the decisions of our outstanding colleagues.
The Loblaw Privacy Office plays an important role in enabling this vision and works intimately with the business, both fostering innovation and supporting the business on privacy law compliance, risk management / mitigation strategies and the development of the long-term business strategy.
The Privacy Legal Counsel will be responsible for providing legal, risk and strategic support to the Loblaw Privacy Office and various business groups on a wide range of privacy-related matters.
This involves working closely with our business colleagues, to support the execution of day-to-day operations and new initiatives in a manner that complies with applicable privacy laws and regulations.
The successful candidate will provide sound, practical advice, using strong judgment in a fast-paced business environment.
Serve as an embedded legal adviser in the Privacy Office, as a source of insight and guidance on legal and regulatory matters.
Provide strategic legal counsel and privacy advice to key business groups.Be a trusted legal advisor who understands business processes, applications, and technologies, so as to recognize privacy risks and help embed privacy requirements and controls into the design and implementation of Company projects and services.
Support the privacy legal education and training of the privacy team and broader Legal team.Interact with other legal counsel to provide creative and thoughtful advice.
Support complex commercial transactions and negotiations in a wide variety of areas involving privacy considerations.Identify the need for and oversee the drafting of privacy related policies, notices and standards.
Play a key role in privacy incident coordination and management, including investigations, and notification requirements to regulators and affected individuals.
Provide guidance and review privacy assessments for new / changing products, programs and services, when needed.Oversee responses to Access and / or Freedom of Information Requests, as well as customer inquiries / complaints to the Company’s privacy mailbox, when required.
Support the development and delivery of privacy training to raise awareness about Loblaw’s privacy programs, data handling practices, procedures and legal obligations.
Support the Chief Privacy Officer by identifying and escalating issues, including legal issues, providing input on key decisions, and developing legal updates for the Privacy Committee and Management Board.
Monitor current and evolving statutes, regulations, industry developments and case law to identify legal issues of critical importance to the Company.
Role Requirements :
Minimum 3-5 years post-call experience in privacy law, including a well-developed understanding of established and proposed rules for the management of personal health information.
Member in good standing of the Law Society of Ontario or another Canadian province.Well versed in Canadian (PIPEDA and health privacy laws) and international privacy laws (e.
g. CCPA, GDPR)A keen interest in staying abreast of global privacy developments.CIPP certification is a plus but not mandatory (e.
g. CIPP-C).Multifaceted privacy experience with a large retail organization and / or major corporation is desirable.Proven ability to use your knowledge to help businesses deal with privacy related matters.
Experience with privacy issues with regards to evolving technology (e.g., mobile, cloud, etc.)Ability to produce concise, insightful legal opinions and summaries.
Ability to work in a fast-paced, changing environment while organizing and managing multiple responsibilities and projects with competing priorities and deadlines.
Forward thinking with respect to identifying, assessing and prioritizing risks, issues and challenges.An action-oriented approach, with the ability to act decisively.
Excellent communication and presentation skills, including the ability to present effectively to varying levels of management.
Excellent interpersonal skills, including the ability to develop strong relationships across all levels of the organization, a positive attitude, thoughtfulness as well as collaboration and creativity.
Bilingualism considered an asset (English and French).