Chief Privacy Officer/ VP, Associate General Counsel
No Brag, Just Fact!
Over the last decade, we set out to be the world's greatest dialysis company, and over the next decade, we're poised to build the greatest healthcare community the world has ever seen. When you join the DaVita Village, you're joining a winning team. Through our commitment to training, growth and quality, we consistently achieve superior clinical outcomes while giving teammates the opportunity to excel in an award-winning environment that enables them to thrive both professionally and personally.
DaVita Kidney Care strives to improve patients' quality of life by innovating clinical care, and by offering integrated treatment plans, personalized care teams and convenient health-management services. As of June 30, 2018, DaVita Kidney Care operated or provided administrative services at 2,580 outpatient dialysis centers located in the United States serving approximately 201,000 patients. The company also operated 253 outpatient dialysis centers located in 10 countries outside the United States. DaVita Kidney Care supports numerous programs dedicated to creating positive, sustainable change in communities around the world. The company's leadership development initiatives and social responsibility efforts have been recognized by Fortune, Modern Healthcare, Newsweek and WorldBlu. For more information, please visit DaVita.com.
The DaVita in-house team is known as the "Justice League” or the “JLD." The Justice League is comprised of over 200 attorneys, paralegals, and professionals. The attorneys are viewed as strategic business partners and work closely with each other and with senior management on a daily basis. The Justice League values diversity, support and respect for each other, analytical rigor, commitment to professional development, and a passion for excellence.
Located in Denver, CO, the VP, Chief Privacy Officer, Associate General Counsel will provide comprehensive legal counsel on all data privacy and security laws and related regulations in partnership with our entrepreneurial IT development leadership, to ultimately extend care beyond our clinics and enable a better experience for our teammates, physician partners and most importantly, our patients and their care partners.
Responsible for all aspects of privacy compliance for all domestic business units and international subsidiaries in EMEA, LATAM and APAC.
Provide legal advice on data privacy and security laws and regulations with emphasis on the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the Health Information Technology for Economic and Clinical Health Act (HITECH), state privacy laws, GDPR, PDPA, and all other related rules and regulations
Provide direction in developing and monitoring policies and processes to assist business units in complying with global privacy laws and regulations
Manage and oversee outside counsel engagement and support
Analyze complex privacy regulatory issues and present recommendations in oral and written form to senior executive leadership and business operational leadership
Perform privacy regulatory review on all aspects of the business with focus on IT clinical systems development
Collaborate with IT development teams to ensure that internal development of technologies and services comply with applicable data privacy requirements
Supports IT compliance with administrative, technical and physical safeguards requirements
Assist with negotiations of data privacy and security provisions in internal and 3rd party contracts/agreements
Partner with various business teams to ensure that introductions of 3rd party technology or services comply with applicable data privacy requirements, including review of related contractual agreements
Contribute and review privacy education content and provide periodic best practices updates to business leadership
Supervise and coordinate data breach responses, regulatory investigations, and other legal/external inquiries regarding privacy
Provide periodic privacy updates to the executive teams and Board of Directors
Coordinate with other legal teams on regulatory, risk, compliance, and operational issues
Maintain Incident Response Plan and Co-Chair Security Incident Response Team
Lead a team of privacy specialists, analysts, managers, directors and support staff
Minimum 7 years legal experience in HIPAA and state privacy compliance
J.D. degree and state bar admission (in good standing) strongly preferred
Prior legal experience in GDPR, PDPA, and other international privacy regulatory requirements in Europe, Asia, and Latin America
Understanding and experience with relevant health care privacy and security issues (i.e., audits, investigations, breach mitigation, incident response, etc.)
Understanding and experience with IT systems and clinical IT development
Ability to interpret new laws and regulations and communicate advice to senior management and line personnel
Ability to interpret new and existing privacy and security legal requirements and to develop and operationalize process to support regulatory compliance
Strong communication skills, written and oral
Pragmatic problem solver
Maturity and strong interpersonal skills; an inspirational leader
A keen understanding of business, the ability to diagnose legal problems, and present sensible solutions and alternatives
The ability to effectively manage time and resources to accomplish ambitious work volume and goals in budget
A bright individual who is a "quick study" and grasps issues quickly
Able to work well under pressure in a fast moving, dynamic company
Here is what you can expect when you join our Village: • A "community first, company second" culture based on Core Values that really matter. • Clinical outcomes consistently ranked above the national average. • Award-winning education and training across multiple career paths to help you reach your potential. • Performance-based rewards based on stellar individual and team contributions. • A comprehensive benefits package designed to enhance your health, your financial well-being and your future. • Dedication, above all, to caring for patients suffering from chronic kidney failure across the nation. Enter text here
Join us as we pursue our vision "To Build the Greatest Healthcare Community the World has Ever Seen." Why wait? Explore a career with DaVita today. Go to http://careers.davita.com to learn more or apply.
DaVita Inc., a Fortune 500® company, is the parent company of DaVita Kidney Care and DaVita Medical Group. DaVita Kidney Care is a leading provider of kidney care in the United States, delivering dialysis services to patients with chronic kidney failure and end stage renal disease. DaVita Kidney Care strives to improve patients' quality of life by innovating clinical care, and by offering integrated treatment plans, personalized care teams and convenient health-management services. As of September 30, 2017, DaVita Kidney Care operated or provided administrative services at 2,470 outpatient dialysis centers located in the United States serving approximately 196,000 patients. The company also operated 230 outpatient dialysis centers located in 11 countries outside the United States. DaVita Kidney Care supports numerous programs dedicated to creating positive, sustainable change in communities around the world. The company's leadership development initiatives and social responsibility efforts are recognized by Fortune, Modern Healthcare, Newsweek and WorldBlu.