Who we are

Olink Proteomics is a rapidly growing life science company committed to advancing the understanding of human diseases through proteomics. We are dedicated to innovation, quality, rigor and transparency, providing outstanding solutions and support for human protein biomarker discovery.

The vital role of proteins in understanding human biology has been recognized for many decades, but technological limitations severely restricted the comprehensive investigation of the huge number of proteins that could be important in different biological processes and diseases. With Olink, scientists can now simultaneously measure thousands of human proteins using just a few µL of blood sample, with highly specific, thoroughly validated assays that cover a very wide dynamic range (fg/mL to µg/mL).

In a few years, Olink has grown rapidly from a small, Sweden-based company offering assays for a few hundred proteins, to a NASDAQ-listed organization with a strong global presence, a broad portfolio of flexible protein biomarker solutions and library of high quality, thoroughly validated assays that covers ~3000 proteins.

For more information about Olink, please visit www.olink.com

Position Description

Reporting to the General Counsel, the Counsel and Data Privacy Officer is integral to the development, maintenance, and enhancement of Olink’s data privacy program. You will be responsible for not only providing advice on laws, regulations, and industry best practices concerning data privacy, but also operationalizing those requirements. Leading the daily operations of the privacy program may include; development, implementation, and maintenance of policies and procedures, monitoring program compliance, investigation and tracking of incidents and breaches.

Primary Responsibilities

• Build a strategic and comprehensive privacy program that defines, develops, maintains and implements policies and processes that enable consistent, effective privacy practices which minimize risk and ensure the confidentiality of personal data, personally identifiable information (PII) and protected health information (PHI), paper and/or electronic, across all media types. Ensures privacy forms, policies, standards, and procedures are up-to-date.
• Lead privacy by design reviews of client-facing services, offerings, projects, products or initiatives, incorporating data privacy principles into those initiatives.
• Partner and interact with key business stakeholders to ensure data privacy issues are considered at the outset of new services, offerings, projects, products and initiatives.
• Provide data privacy advice to the IT, Business Development, HR, Finance, and Commercial teams, in support of rapid-solutioning to meet identified client needs.
• Support contract negotiations on an as-needed basis to review data privacy contractual provisions with customers and third-party suppliers, such as data processing agreements, data transfer agreements, and business associate agreements.
• Conduct or oversee legal research. Interpret and apply a risk-based assessment of how legal requirements affect new services, offerings, projects, products, or initiatives.
• Keep abreast of technological developments, changes in the law, and enforcement trends, and their impact on data privacy. Develop guidance, training, and thought leadership as needed for internal audiences.
• Build and maintain strong and trusted relationships with internal and external stakeholders.
• Effectively work with cross-functional teams in on-site and remote locations, in an engaged, business-focused, and pragmatic manner.
• Work with senior management and General Counsel to establish governance for the privacy program.
• Ensure the organization has and maintains appropriate privacy and confidentiality consents, authorization forms and information notices and materials reflecting current organization and legal practices and requirements.
• Perform or oversee initial and periodic information privacy risk assessment/analysis, mitigation and remediation.
• Conduct related ongoing compliance monitoring activities.
• Oversee, develop and deliver initial and ongoing privacy training to the workforce. Initiate, facilitate and promote activities to foster information privacy awareness within the organization and related entities.
• Advise on data protection impact assessments when required under Article 35 of the GDPR and other global requirements.
• Work and cooperate with designated supervisory authorities on issues relating to the processing of personal data.
• Be available for inquiries from data subjects on issues relating to data protection practices

Qualifications/Skills

• Minimum 5 years of experience in a data privacy function within a global law firm or a multinational corporation.
• Experience with the data privacy and information security laws and regulations in the U.S., Canada, Europe and APAC.
• Experience and expertise with conducting privacy by design reviews, particularly in the fields of life sciences and biotech.
• Understanding of data privacy contract requirements and their application to operations.
• Prior role in providing data privacy legal guidance to business units engaged in providing client-facing services, offerings, projects, products, or initiatives.
• Experience in monitoring privacy trends and developments and translating those into actionable guidance or requirements.
• Strong project management and organizational skills.
• J.D. or equivalent degree
• CIPP certification. CIPM/CIPT are highly preferred.