- Implementation of the Group Data Privacy Policy and Group Data Privacy Processes in the respective company

- (Co-) design and organization of the internal data protection organization in coordination with the respective
management and the responsible Group Privacy Officer and/or Divisional Privacy Coordinator

- Contact person for data protection-relevant questions and preliminary checks and related research, recommendations and risk assessments in the respective company

- Support in the performance of data protection impact assessments

- Obtaining relevant information from the respective company

- Coordinating the processing of data protection incidents, data subject inquiries (in particular requests for information, deletion and objections) and other standard processes (advertising objections, commissioned data processing and obligation to maintain data secrecy)

- Advice on data protection-related questions and derivation of measures and, if necessary, referral to the responsible data protection officer and/or Divisional Privacy Coordinator

- Analysis and implementation of regulations with a focus on existing and upcoming legal foundations as well as developments in data protection (e.g. GDPR, ePrivacy Directive or Regulation) after consultation with the management of the respective company and the responsible data protection officer and/or Divisional Privacy Coordinator

- Documentation, implementation, management and control of standard processes (e.g. contracts for commissioned processing, commitment to data secrecy)

- Adaptation of processes to current developments in data protection

- (Further) development, documentation and continuation of process descriptions as well as the register of processing activities

- Maintaining the level of data protection, for example by designing and conducting employee sensitization/training or organizing employee sensitization/training for the respective departments and assigning the responsible Divisional/Regional Privacy Coordinator and/or the Corporate Privacy Officer

- Management and documentation of data protection incidents

- Regular coordination with the responsible Divisional/Regional Privacy Coordinator and/or the Chief Privacy Officer

- Regular reporting (at least once a year) to the management of the respective Knauf company, Divisional / Regional Privacy Coordinator and the responsible Group Privacy Officer

- total 10 to 15 years of working experience, including at least 5 years of experience in data protection compliance

- Expertise in data protection laws and practices

- Experience in a legal, audit, or risk management role

- Strong project management skills

- Excellent verbal and written communication skills. Meticulous and result-oriented. A pragmatic solution provider/advisor with strong analytical mindset

- Strong research skills and soft skills

- Law degree with admission to a common law jurisdiction is preferred

- Understanding of EU General Data Protection Regulation (GDPR) is preferred but not a must

This position is only open to Malaysian citizens.