Data Privacy Officer at PT. XL Axiata Tbk.
PT XL Axiata Tbk (XL Axiata), previously known as PT Excelcomindo Pratama Tbk., is Indonesia’s most aggressive and innovative mobile services provider. This company is a part of Axiata Group, a leading telco group which has 9 telco providers reside in 9 countries in Asia.
XL provides wireless telecommunications services, leased lines and corporate services, which include Internet Service Provider (ISP) and Voice over Internet Protocol (VoIP) services. In addition, it provides Global System for Mobile Communications (GSM) network services, voice, data, third generation (3G) and other value-added cellular telecommunications services. The Company also provides services that allow its customers to purchase electronic voucher reloads at all of its centers and outlets, automated teller machines (ATM) of various major banks and through its call centers. Its subsidiaries, which are engaged in the financial sector, include Excel Phoneloan 818 B.V., GSM One (L) Limited, GSM Two (L) Limited and Excelcomindo Finance Company B.V.
Responsibilities
- Develop, implement, and maintain the company’s data privacy policies and procedures, ensuring compliance with relevant data protection regulations such as PDP Law and others regulation as applicable.
- Monitor changes in data privacy laws and regulations and advise relevant stakeholders on their impact to the company’s operations and data management practices.
- Conduct privacy impact assessments (PIAs) and ensure that data protection impact assessments (DPIAs) are performed as necessary.
- Advise on and help implement privacy-by-design principles in the development and implementation of new products, services, and systems.
- Collaborate with other teams such as legal, IT, HR, and security to ensure data privacy and protection risks are effectively managed across the company.
- Manage data subject rights, working with relevant stakeholders to ensure timely and effective resolution.
- Work with external privacy consultants or legal counsel as necessary to support the company’s privacy program.
- Develop and deliver privacy training and awareness programs to employees and contractors to ensure they understand their responsibilities and obligations when handling personal data.
- Work closely with the Data Privacy Office to ensure alignment of the company’s data privacy and protection strategies.
- Establish and maintain a data breach response plan, including conducting regular drills and ensuring appropriate communication channels and protocols are in place.