Point Click Care

(US) Privacy Compliance Analyst

Job Description

Position Summary:
As a member of PointClickCare’s Legal and Compliance team, you will work on critical initiatives and projects that significantly impact PointClickCare, its customers, and other stakeholders. Reporting to PointClickCare’s Privacy Officer, you will identify, analyze, and distill ever-changing information-privacy requirements applicable to PointClickCare’s various operations throughout the United States and Canada in order to assess, modify, and carry out PointClickCare’s privacy policies, procedures, and training. You will be relied upon to provide accurate, timely, and relevant information to enable informed leadership decisions.

The subject matter of your work will focus primarily on the privacy of protected health information (PHI) that PointClickCare holds as a HIPAA business associate on behalf of HIPAA covered entities (and in accordance with other applicable federal and state patient privacy laws (e.g., 42 CFR Part 2, etc.)). A meaningful portion of your work, however, will also address the patchwork of emerging consumer- and employee-based privacy laws (e.g., CCPA/CPRA, VCDPA, UCPA, CPA, etc.) that affect certain limited aspects of PointClickCare’s business.
In addition to proactive policy work, you will lend your expertise in response to day-to-day privacy compliance matters from inside and outside the company, including questions regarding specific information security events and questions from customers regarding PointClickCare’s data use practices.

In this role, you will collaborate with team members from across multiple departments, including Security and Trust, Data Intelligence, Product Management, Clinical Solutions, Customer Success, and Government Affairs.


Key Responsibilities:
  • Assist in the development of, and ongoing updates to, PointClickCare’s privacy policies, controls, and training materials
  • Assist in the unification/consolidation of privacy policies across PointClickCare’s subsidiaries
  • Identify, communicate, and document privacy risks, privacy policy gaps, and privacy policy exceptions
  • Stay informed of relevant regulatory and industry changes, trends, and best practices and assess the potential impact of these changes on PointClickCare
  • Meet regularly with the Product Management and Clinical Solutions teams to ensure “privacy-by-design” consistency in all PointClickCare services
  • Assist in responding to internal and external privacy impact assessments, privacy questionnaires, and other privacy compliance questions
  • Assist the Security and Trust team on all privacy-related matters encompassed within security assessments/audits (e.g., for HITRUST CSF, SOC 2 Type II, etc.)
  • Assist the Security and Trust team in analyzing the privacy implications and reporting obligations associated with information security incidents/events
  • Work with Cloud Operations and other data storage teams to ensure alignment with privacy policies and data retention policies
  • Perform privacy risk/impact/compliance assessments of certain sub-business associates and other third-party service providers
  • Assist with responses to data/records requests
  • Successfully set priorities, perform tasks in an orderly fashion, and meet deadlines
  • Prepare agenda for and support legal and regulatory committees

    • Required Skills & Experience:
  • BA/BS degree
  • 2-4 years of relevant work experience
  • Extensive knowledge and experience in United States health and general privacy compliance requirements
  • Demonstrated capacity to understand, compare, analyze, and communicate complex regulatory and business challenges
  • Experience defining, drafting, and implementing policies and training materials
  • Experience conducting ongoing privacy compliance and monitoring activities
  • Demonstrated organization, facilitation, communication, and presentation skills
  • Strong project management skills, including ability to think end-to-end and manage multiple priorities/projects simultaneously for multiple stakeholders
  • Excellent interpersonal skills; a team player with ability to collaborate at all levels of the organization
  • Strong analytical capability and problem-solving skills, with attention to detail
  • Keen judgement, integrity, and tact
  • Strong written and verbal communication
  • Self-starter with the ability to work independently

    • Preferred Experience:
  • Privacy-related certifications desired (e.g., CIPP, CIPM, etc.)
  • Familiarity with Canadian health and general privacy laws (e.g., PIPEDA, PHIPA, etc.)
  • SaaS business experience
  • Health information exchange experience 

    • Apply Now
    Job Summary

    Director, Tax

    Company Overview: Bird’s cleaner, affordable, and on-demand mobility solutions are available in cities globally. We take a collaborative, community-first approach to micr;
    • USA Only
    • 5 days ago

    Senior Account Executive - US (IL, MT, ND, SD)

    About CognigyCognigy is revolutionizing the customer service industry by providing the most cutting-edge AI workforce on the market. Its award-winning solution empowers b;
    • USA Only
    • $240000-$300000
    • 6 days ago

    Senior Account Executive, Mid-Market/Enterprise - Southern Europe (Italian and Spanish Speaking)

    About Remote Remote is solving global remote organizations’ biggest challenge: employing anyone anywhere compliantly. We make it possible for businesses big and small to ;
    • Ireland Only
    • $93300-$209950
    • 5 days ago

    Revenue Operations Manager

    The Revenue Operations Manager will play a central role in building and maintaining the organization’s analytical and reporting framework. Reporting to our CE;
    • Canada Only
    • 22 hours ago