Lucas Zachara

1. Data Privacy, Protection and Compliance

• Build and deploy data privacy and security compliance road-map - GDPR, and other regulatory areas - i.e. .COPPA, FTC Act, CCPA...
• Ensure knowledge sharing, and data best practices between subsidiaries and business lines.
• Define, together with key stakeholders, roles and responsibilities related to data management (with focus on health/sensitive data).
• Create governance and reporting framework for Steering Committee, making data privacy compliance a strategic matter.
• Organize, train and run a network of Data Stewards in large operational teams and country subsidiaries (EU and beyond).
• Collaborate with legal, operations, IT, procurement, and develop ownership of data.
• Set up procedures and manuals for implementation of Data Privacy governance and the associated change management plan within the business scope of customer service, contract management, marketing and commercial service, distribution, HR & procurement.
• Ensure compliance in customer relations: TPA’s, distributors, business partners, suppliers.
• Train staff in GDPR/data privacy, carry out data privacy awareness raising program.
• Develop and deploy operating guidelines and procedures for Data Subjects Rights and Data Breach.
• Data privacy compliance – carry out DPIA, control cross-border data transfers, develop and manage Records of Processing Activities, Data Retention & Data Breach process, Consent...


2. Data Management

• Work with different stakeholders (Operations, Business & Product Deployment, Data Office/DPO, etc.) to develop analyses leading to actionable business, product insights, KPIs and metrics through data driven business model.
• Define and implement the data roadmap while overseeing international compliance requirements.
• Monitor news, internal and external research, market activity, industry reports, and government regulations and ensure compliance with internal/external requirements