Join BMW R&D China and work in the digital car business area.

Maintaining the data privacy for personal, sensitive, and important data in accordance with the law is most significant to protect the BMW business and its customers.

The position is located in Beijing/Shanghai. You are responsible for data privacy related to the digital car functions of BMW in China as part of the engineering department. Your work focusses on data which is classified by the law as personal data, sensitive data, and important data. Your role includes managing the relevant contacts with governmental institutions and industry partners. You drive the interest of BMW in standardization working groups and industry groups leveraging your expert knowledge related to data privacy as well as your excellent communication skills on all hirachie levels inside and outside the company. You work with the team across BMW China to define and contiously maintain the data privacy framework and guidelines for data privacy in China in alignment with other BMW Group data privacy protection departments in China and Munich. You conduct privacy impact assessments and define the privacy concepts for the upcoming digital service portfolio of BMW and as well approve the data privacy implementation based on BMW policies and guidelines.

Major Responsibilities

• Overall responsible for overseeing the data protection strategy of the digital car as well as its implementation to ensure compliance with BMW data privacy rules and China regulation and law aligned with BMW compliance and legal departments.
• Lead the initiative to clearly and repeatedly communicate of company’s policies, standards and procedures to employees and business partners through training and awareness activities.
• Collaborate with development team to ensure the privacy requirements are considered during the design phase of new technology and products.
• Continuously evaluate the regulatory landscape in the context of the ICV (intelligent Connected Vehicle) and derive clear requirements to development and operation of related BMW functions and services. Identify and communicate risks for BMW business in China.
• Support the regular comprehensive completion of privacy impact assessments for all ICV related BMW functions and services as required by BMW data privacy rules and China regulation and laws.
• Communicating with and influencing the ICV data privacy regulation in China and standards on behalf of BMW China on all levels of government bodies, industry research associations and other relevant groups.Communicating with and influencing the ICV data privacy regulation in China and standards on behalf of BMW China on all levels of government bodies, industry research associations and other relevant groups.
• Continuously review, implement and maintain effective data privacy policies, procedures, and practices in alignment with BMW compliance and legal departments

Education/Degree:

• Graduate degree of a program in Law, Information Security, or a related field
• Certifications such as CIPM, CIPT or CIPP is preferred.

Knowledge/Skills/Competences:

• Significant knowledge of data protection concepts, principles, regulations and legislation, specifically including in-depth understanding of the regulatory environment in China and Europe General Data Protection Regulation and Privacy and Electronic Communications Regulations.
• Deep understanding of current IT technologies (IOT, Cloud, etc).
• Knowledge of cyber security risks and information security standards.
• Strong managerial and analytical skills and judgements. Ability to work independently as single point of contact for the whole organization.
• Excellent language skills in English and Chinese (written and oral) with the ability to explain complex topics in simple terms; German language skills are highly appreciated.
• Dependable, reliable, and able to produce a consistently high quality/quantity of work with the eye for the details nobody else sees.