Go to search Go to main content

A Range of Possibilities

Global Data Privacy Officer CHC GBU - All Gender

date posted 10/25/2022
contract type Full time
job id R2665707
location Milano;

Le contenu du poste est libellé en anglais car il nécessite de nombreuses interactions avec nos filiales à l’international, l'anglais étant la langue de travail.


At Sanofi CHC, we work passionately every day to ‘serve healthier, fuller lives”. Everything we do is centered around people – our consumers, our customers, healthcare professionals, and our employees across the world.

We serve 1bn consumers worldwide, building loved brands, shaping the market through strong global-local partnerships, and taking care of our planet through our sustainability living pact.

As a top 3 global CHC player, we want to raise the bar in terms of our strategic and operational capabilities to enable sustainable, above-market growth. In order to achieve this, we need strong talents that will help us shape the future of CHC by doing it the right way.

Our CHC fully standalone journey (separating the Business Unit from our Pharma company heritage, processes etc.) to become the Best Fast Moving Consumer Healthcare company IN and FOR the World, will require us to retain, attract and grow the best leaders in our industry.


This global role will drive the strategy and execution of the Data Protection program within the CHC GBU in alignment with the Sanofi Group Chief Privacy Officer.

The role will be based in a country with a CHC office site within Europe.

The role has no direct supervisory responsibilities but will set direction and counsel to partly dedicated functional and local privacy officers across the organization.

Reporting to the Global Head of Ethics and Business Integrity CHC, within the Legal Ethics and Business Integrity (LEBI) CHC Team, you will provide leadership and oversight on data privacy to the activities and projects of the CHC GBU on strategic and operational level.

The LEBI CHC Team is built on the aspiration to “Serve adding value as trusted partners to the business, enabling its sustainable growth, caring about our consumers and people while protecting Sanofi´s independence”.

We do so by delivering qualitative and timely legal and ethics and business integrity advice, optimizing processes and resources, spotting trends, and shaping the external environment, leveraging on local teams, and sharing accountability with the business for successes and failures.

Embracing these principles is key to succeed in the position. Role modelling Sanofi’s Play to Win behaviours is another critical attribute.


  • Drive and implement a risk based CHC Privacy program in line with Sanofi Group Privacy strategy
  • As the statutory Data Protection Officer for all CHC Europeans entities, serve as the primary point of contact internally and with external stakeholders -such as data subjects and supervisory authorities-, on all data protection matters related to the CHC GBU
  • Advise and drive, through trainings and change management activities- a privacy compliant culture within the CHC GBU
  • Serve as core member in Cyber Security Crisis Committee CHC GBU
  • Ensure CHC policies and practices adhere to current and emerging regulations, such as GDPR, CPPA/CPRA, POPIA, PIPL, applicable standards, and others
  • Monitor the maintenance of records of processing operations
  • As the Compliance Business Partner for CHC Digital, assess the impact of emerging technology (PET, AI) and provide guidance related to their ethical use
  • Contribute to contracting activities with 3rd parties and Suppliers, to ensure privacy by design within CHC GBU
  • Perform internal and 3rd party audits, proposing corrective and preventive action plans -as applicable- designed to mitigate risk and meet best-practices requirements
  • Manage privacy breaches and Individual Rights Requests in accordance with data protection procedures
  • Proactively monitor changes in the regulatory landscape and drive changes to CHC applicable standards to ensure compliance
  • Shape the business environment advocating on good privacy practices that enable business growth while protecting data subjects' rights, in external relevant Forums



  • J.D. or foreign equivalent, useful
  • Open to other technical backgrounds that can show deep understanding and robust track record on data protection laws and regulations
  • Privacy Certification (CIPP/E and/or CIPM)

Required knowledge and/or experience

  • 7+ years of experience in similar roles in the FMCG, retail industry and AdTech
  • Expertise in data protection laws and practices including an in-depth understanding of the GDPR
  • Communication, empathic and influencing skills; must be able to succinctly summarize and present complex concepts to business partners, including at Executive Level and Senior Management teams
  • Able to work autonomously and cross-functionally within a matrixed team
  • Sound judgement and ability to analyse situations and information to propose pragmatic solutions
  • Creative thinker who is ready and willing to lead with high ethical standards an organization through change
  • Adaptability to embrace a dynamic and diverse working environment

Language skills

  • Excellent written, oral communication and presentation skills in English

Cultural traits/P2W Behaviour

  • Push to go beyond the level we have operated until now: constantly challenge the status quo focusing on the priorities that will deliver the best outcomes and letting go what won’t: be intolerant to mediocracy, believe we can and must do better and aim at higher but never at the expenses of our values and judgment
  • Put the interest of the organization ahead of own of those of his/her team: consider both short and long term impact of decisions; puts collective and global goals above individual or local goals; share resources and capabilities with those with the greatest need and impact; enable decision making at appropriate level
  • Act in the interest of our patients and customers: actively engage with customers to know their current and future needs; brings an external perspective into decisions
  • Take action and don’t wait to be told what to do: take smart and informed best bets with the information at hand and anticipate the consequences of her/his actions; use personal judgement and others’ advice to make bold and impactful decisions which move us forward

At Sanofi diversity and inclusion is foundational to how we operate and embedded in our Core Values. We recognize to truly tap into the richness diversity brings we must lead with inclusion and have a workplace where those differences can thrive and be leveraged to empower the lives of our colleagues, patients and customers. We respect and celebrate the diversity of our people, their backgrounds and experiences and provide equal opportunity for all.

As part of its diversity commitment, Sanofi is welcoming and integrating people with disabilities.

Please note you are leaving the corporate site of Sanofi and are being redirected to our applicant tracking system, Workday, which allows you to apply to our open positions.


Here's who you know at Sanofi!

Reach out to find out more about our company, this opportunity and request a referral.

Please note you are leaving the corporate site of Sanofi and are being redirected to our applicant tracking system, Workday, which allows you to apply to our open positions.