Privacy and Compliance Lead

Posted:
10/29/2024, 7:29:18 AM

Location(s):
Old Toronto, Ontario, Canada ⋅ Ontario, Canada

Experience Level(s):
Senior

Field(s):
Legal & Compliance

Workplace Type:
Hybrid

About Us:


Established over 30 years ago, Medcan is a global leader in assessing clients' overall well-being and inspiring them to live well. Medcan has a comprehensive range of diagnostic assessments, which, in combination with innovative programs tailored to specific needs, are designed to successfully reach improved health outcomes.

Over 80 physicians and specialists, alongside a broad roster of complementary health care disciplines, provide health and lifestyle management services on site and by video consult for individuals, families and organizations. Our team of 700+ staff see clients virtually and physically from our downtown Toronto and Oakville clinics.

The Role:

We are currently recruiting for a for a privacy and regulatory compliance professional (Privacy and Compliance Lead). This is a high-profile role, and the candidate will be expected to work directly with all of Medcan’s managers, directors and executives across the organization.   

The Privacy and Compliance Lead reports to the Chief Legal Officer and will be responsible for new and existing privacy, compliance and risk programs and initiatives. These efforts will include working with internal stakeholders and external vendors and expert advisors including legal counsel and external government agencies (e.g., Information and Privacy Commissioner of Ontario, Ministry of Accessibility).  

The Accountabilities:

  • Maintaining Medcan’s existing privacy and physical security and regulatory compliance documents and communicating to staff such policies and procedures
  • Managing Medcan’s existing privacy program including investigating, documenting, responding to privacy breaches and incidents and reporting requirements
  • Perform internal privacy departmental assessments and system audits
  • Facilitate, draft, and support the completion of Privacy Impact Assessments and privacy reviews
  • Facilitate Privacy training to new staff and on-going Privacy training as required
  • Respond to enquiries about Medcan’s privacy policies
  • Prepare and/or coordinate written submissions to regulatory bodies, including the OPC
  • Manage interactions with the OPC
  • Conduct research and analyses on privacy and other communications issues to assess their regulatory and business implications
  • Further developing and administering Medcan’s new and existing vendor/partner privacy and risk compliance program and communicating progress to key stakeholders
  • Coordinating with Medcan’s Leadership team to ensure the business line achievement of required risk and compliance initiatives according to Medcan’s annual enterprise risk calendar and helping maintain Medcan’s enterprise risk ledger
  • Monitoring any regulatory/legislative changes (e.g. changes to Federal and Provincial privacy laws, CASL, Consumer Protection Act, Accessibility), understanding the changes and communicating to management and staff how the changes can affect Medcan

The nature of the role requires exceptional analytical, writing, organization, and project management skills. The individual must be able to work well with others and be a self-starter. A strong knowledge of privacy legislation (e.g. PHIPA, PIPEDA) is required.   

Other critical competencies include:

  • Demonstrated success in independently researching, creating, and managing privacy programs and policies
  • Superior written and verbal communication skills, conflict resolution, and problem-solving skills;
  • Ability to develop and deliver presentations in a professional manner to all levels of management
  • Attention to detail and a sense of urgency;
  • The ability to interpret complex information, synthesize and then communicate it to others in a manner that can be easily understood and acted upon;
  • Flexibility in adapting to change and in participating in consultative decision-making processes;
  • Ability to connect with diverse audiences and have cultural awareness

The Requirements:

  • Undergraduate degree (or equivalent experience)
  • 3+ years of work experience in a privacy capacity and knowledge of privacy legislation (e.g., PHIPA, PIPEDA)
  • Ability to deal with individuals sensitively, tactfully, diplomatically, and professionally at all times
  • A high degree of professional integrity, ethics, and confidentiality
  • IAPP certification (or willingness to obtain)
  • Experience in health care field
  • French bilingualism is an asset

Medcan has a strategic objective to grow substantially over the next 5 years.  As a Privacy and Compliance Lead you will have exposure to all areas of the business and there will be opportunities for growth.  If you are looking to apply your enthusiasm to learn and entrepreneurial acumen, then Medcan is for you.

This full-time role reports to the Chief Legal Officer. The work schedule is hybrid Monday to Friday with 2 days in the office at 150 York St in downtown Toronto.

Our Benefits:

Medcan’s philosophy of Live Well, For Life applies not only to our clients, but also our valued staff members. We provide paid Wellness Days along with a variety of programs to help our employees manage their mental and physical well-being. We offer special employee rates on fitness sessions, in-house specialty services, and a complimentary membership to our clinic to name a few.

This position comes with an attractive total compensation package including a competitive compensation model, a comprehensive benefits plan, RRSP matching, and a genuine opportunity to grow. We offer hybrid/flexible work arrangements to help Medcanners balance their work and personal or family needs.

We also have employee perks to continue to help our staff Live Well, For Life. This includes complimentary group fitness sessions as well as an on-site healthy lunch program provided by our own food and catering brand, Nourish. We also provide interactive webinars hosted by our in-house experts focused on Eat, Move, Think. Our enhanced benefits package is just one of the reasons why we continue to be one of Canada’s Best Managed Companies!

We thank all applicants for their interest; however only those selected for an initial interview will be contacted. No phone calls and no agencies please.

Diversity, Inclusion, and Accessibility:

Medcan is an equal opportunity employer committed to the principles of employment equity, diversity, and inclusion. We continuously work to provide a fair opportunity for all staff to participate and succeed at work, creating a sense of belonging, respect and a place that values the unique perspectives and lived experiences of each member of our team. We recognize the value of diversity in attributes such as age, gender identity and expression, sexual orientation and attractionality, ethnicity, race, colour, nationality, family and marital status, ability, religion and belief, freedom of thought, and any other characteristic that makes you unique. If these principles resonate with you, we encourage you to apply!


If contacted for an employment opportunity, please advise your Talent Acquisition Specialist if you require accommodation.