Location: Canada QC   Type: Full Time

OPTEL. Responsible. Agile. Innovative.

OPTEL is a global company that develops transformative software, middleware and hardware solutions to secure and ensure supply chain compliance in major industry sectors such as pharmaceuticals and food, with the goal of reducing the effects of climate change and enabling sustainable living. If you are guided, as we are, by socio-eco-environmental values and want to participate in solving the biggest challenges facing our world today, here is how you can help:


Under the Director of Governance, Risk and Compliance, the mandate of the Chief Privacy Officer is to ensure the protection of personal information held by OPTEL and compliance with the various applicable laws in this area.

This role requires support to senior management in order to assess, analyze and quantify risks related to personal information, to design controls and assist in their implementation within the various sectors of the organization to comply with the laws.


The primary responsibilities of the Chief Privacy Officer are to:

  • Acts as the Chief Privacy Officer for Optel as defined by law;
  • Draft or revise privacy policies, codes of conduct, procedures or standards and ensure their implementation;
  • Leads, designs, implements and maintains the best privacy strategy to comply with legislation;
  • Produce activity reports and recommend orientations and action plans related to the protection of personal information;
  • Develops and implements the means to raise awareness, inform, train and update the knowledge of OPTEL employees and its partners regarding the protection of personal information;
  • Implements appropriate technical and organizational measures to ensure and be able to demonstrate that processing is carried out in accordance with the law;
  • Ensures that any request for access or rectification from an individual who has a right to be informed of the existence of personal information concerning him or her is received and processed;
  • Notifies the IOC office of any changes that may affect privacy risks. 
  • Coordinates and carries out privacy projects;
  • Responds to questions and concerns from all our clients regarding privacy and legal compliance related to information held;
  • Organizes and supports sales teams to respond quickly to requests for information (RFI), requests for proposal (RFP) and requests for quotation (RFQ) to be more effective and efficient in these processes.


  • Collaborates with the Chief Information Security Officer to determine the appropriate security measures to protect personal information;
  • Collaborates with our lawyers to obtain legal advice, discuss legal issues and in monitoring the legislative and regulatory environment;
  • Participates in the management of privacy incidents with the Governance, Risk and Compliance team;
  • Participates in OPTEL's projects to ensure legal compliance with respect to the protection of personal information;
  • Conduct a roadmap to improve our privacy maturity level that also takes into account privacy risk factors;
  • Produce management indicators for privacy performance and risks;
  • Propose action plans and monitor progress;
  • Ensure that actions support the organization's privacy strategies and objectives and the standards or regulations applicable to the organization.
  • Collaborate in the design and evaluation of policies, processes and standards forming the privacy governance framework;
  • Produce communications, training and facilitate workshops in his/her field of expertise.
  • Assist information security holders in the exercise of their responsibilities in the protection of personal information, particularly in the analysis of contractual agreements, communications agreements or transfers.
  • Advises on the protection of personal information;
  • Drafts privacy opinions, memoranda and other documents;
  • Participates in opportunity studies or other organizational activities;
  • Performs any other related duties.


  • Undergraduate degree in an appropriate discipline such as Information Management, Organizational Information Systems; Business Administration, Information Technology;
  • Five (5) years of relevant experience in compliance or privacy
  • Bilingualism
  • Knowledge of the regulatory framework surrounding privacy and investigations in Canada and Europe:
  • Private Sector Privacy Act;
  • General Data Protection Regulation (GDPR);


  • Experience working with Agile methodologies (Scrum, Kanban);
  • Knowledge of privacy guidelines, norms and standards (CAN/CIOSC 109-1)
  • Knowledge of the following laws:
  • California Consumer Privacy Act or CCPA;
  • Lei Geral de Proteção de Dados
  • Certifications or recognition as an asset:
  • Certified Data Privacy Solutions Engineer (CSPSE);
  • Certified in Risk and in Information Systems Control (CRISC);
  • Certified Information Privacy Professional (CIPP)
  • ISO / IEC 27018 standard 
  • Any other relevant professional certification in the field of information security;
  • Knowledge and experience with a Governance, Risk and Compliance Management (GRC) tool.


  • Competitive compensation
  • Flex hours
  • Ability to work on site or remotely
  • On-site presence once every two weeks or as needed
  • Virtual health clinic and employee assistance program
  • Group and dental insurance from day one
  • Group RRSP and TFSA with employer contribution from day one
  • On-site amenities (free parking and power stations, free coffee and fruit)
  • 50% reimbursement of the monthly RTC pass
  • Several committees in which you can get involved (B-Corp Committee, Social Club, SST)
  • Open, bright areas and ergonomic offices
  • Free English and French classes for those who wish to improve their level
  • Organization present on several continents
  • B-CORP certified company