Ready to make your next big professional move? Join us on our journey to achieve our big dream of building the most loved restaurant brands in the world.
Restaurant Brands International Inc. is one of the world's largest quick service restaurant companies with over $40 billion in annual system-wide sales and over 30,000 restaurants in more than 120 countries and territories. RBI owns four of the world's most prominent and iconic quick service restaurant brands – TIM HORTONS®, BURGER KING®, POPEYES®, and FIREHOUSE SUBS®. These independently operated brands have been serving their respective guests, franchisees and communities for decades. Through its Restaurant Brands for Good framework, RBI is improving sustainable outcomes related to its food, the planet, and people and communities.
RBI is committed to growing the TIM HORTONS®, BURGER KING®, POPEYES® and FIREHOUSE SUBS® brands by leveraging their respective core values, employee and franchisee relationships, and long track records of community support. Each brand benefits from the global scale and shared best practices that come from ownership by Restaurant Brands International Inc.
Primary Responsibilities - What You’ll Do
- Assist with drafting and negotiating a variety of agreements involving vendor, technology services, and data protection-related matters.
- Conduct privacy impact assessments (PIAs) and security reviews, and document, prioritize, and communicate clear privacy requirements for product initiatives and releases.
- Create and maintain contract management and privacy-related reporting tools and dashboards.
- Assist in the design and implementation of processes, policies, and protocols to further strengthen the Global Privacy Program.
- Evaluate the impact on RBI’s business of privacy laws, regulatory guidance, and enforcement actions.
- Educate and advise the business teams on data, privacy, and ethical uses, and provide strategies to address privacy and data protection matters.
- Assist with regulatory inquiries and investigations, incident response, and intensified data subject requests.
- Manage budget and invoicing matters.
Experience
What you’ll bring:
- JD and an active membership in good standing in at least one U.S. state bar.
- At least three (3) years of relevant privacy, data protection, and compliance experience (experience advising technology, franchising and/or retail companies is preferred), as well as experience in contract drafting and negotiating.
- Experience with privacy management programs.
- Experience with data security incidents and regulatory investigations.
Skills
- Solid project management skills, with strong attention to detail.
- Analytical and negotiation skills.
- Able to manage own schedule, juggle different projects, work efficiently, and meet deadlines in a fast-paced environment.
- Able to identify and balance risk.
- Willing and eager to dive into new areas of law and unfamiliar issues.
- Excellent communication skills.
- Strong sense of ownership
Nice-to-haves
- Privacy or cybersecurity credentials (CIPP/E, CIPP/US, ISACA…)
- Experience in consulting
Benefits at all of our global offices are focused on physical, mental and financial wellness. We offer unique and progressive benefits, including a comprehensive global paid parental leave program that supports employees as they expand their families, free telemedicine and mental wellness support.
Restaurant Brands International and all of its affiliated companies (collectively, RBI) are equal opportunity and affirmative action employers that do not discriminate on the basis of race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or veteran status, or any other characteristic protected by local, state, provincial or federal laws, rules, or regulations. RBI's policy applies to all terms and conditions of employment. Accommodation is available for applicants with disabilities upon request.