Yemi OTE
Summary
Experienced Data Privacy Analyst with 6 years of expertise in ensuring compliance with global privacy regulations including GDPR, CCPA, and HIPAA. Served as a HIPAA Officer, leading initiatives to protect sensitive health information and implement robust privacy frameworks. Leveraged strong communication and strategic skills as a Brand Manager in the pharmaceutical industry, driving product awareness and aligning brand strategies with regulatory requirements. Known for bridging technical, legal, and business needs to deliver privacy solutions that support organizational growth and build stakeholder trust.
Overview
12
12
years of professional experience
Work History
Snr. Data Privacy Analyst
Independent Financials
09.2021 - Current
- Worked to ensure my organization regularly complies with applicable data privacy laws and regulations (e.g., GDPR, CCPA, GLBA, HIPAA)
- Supported continued development, adherence, and enforcement of data privacy policies, procedures, and controls
- Manages organizations’ privacy inbox to ensure all inquiries are acted upon with urgency to meet customer/client's needs and adhere to regulatory deadlines hitter to
- Conducts Data inventory and Data mapping to track the inflow and outflow of collected, stored, and processed personal and financial information to ensure Personal Information is protected
- Carries out privacy risk assessments (PIAs & DPIAs) for new and existing projects, systems, and vendors
- Identify and address potential risks related to handling sensitive customer data
- Recommend and implement necessary physical, technological, and organizational data protection measures to protect personal information
- Monitor and report privacy-related incidents and data breaches to higher authorities and regulatory bodies
- Collaborates with the Legal team to investigate and resolve privacy breaches, including drafting reports and coordinating with regulatory bodies when necessary
- Implement Organizational measures to train and re-train employees when security incidents occur
- Conducts privacy risks associated with third-party vendors and partners and also makes sure strong Data Processing Agreements are in place
Data Privacy Analyst II
Terumo BCT
03.2019 - 09.2021
- Ensure the organization's data handling practices comply with laws like HIPAA, GDPR, or local health privacy regulations
- Regularly review data access and usage patterns to identify potential privacy violations of sensitive information
- Monitor data breaches and security incidents, coordinating response and remediation efforts in case of any occurrence also, report to regulatory bodies as required
- Conduct privacy impact assessments (PIAs) to analyze the privacy implications of new projects, products, or initiatives
- Assess data storage, transfer, and usage risks, particularly for sensitive health-related information
- Develop and deliver educational materials and privacy awareness training programs for healthcare staff of various departments to continue sensitization of the importance of personal information safety
- Makes sure consent forms are signed, data-sharing agreements and privacy notices meet legal and ethical standards
- Collaborated with IT, legal, compliance, and operations teams to ensure holistic data privacy practices
HIPPA Officer II
NextCare Urgent Care
02.2018 - 03.2019
- Ensure the organization adheres to HIPAA regulations, including the Privacy Rule, Security Rule, Breach Notification Rule, and Enforcement
- Create and update HIPAA-compliant privacy policies regarding the collection, storage, access, and disclosure of PHI, ensuring they align with federal, state, and local regulations
- Develop, implement, and regularly update HIPAA compliance policies and procedures
- Regularly reviews the Business Associate Agreement (BAA) in compliance with the regulatory body and ensures PHI is safe with respective entities(third-party)
- Conducts periodic risk assessments to check and identify data protection vulnerabilities and implement mitigation strategies
- Investigate reported or suspected breaches of PHI or potential HIPAA violations, take action to contain the incident or breach, and notify the individual whose PHI has been compromised within the stipulated number of days
- Manage the privacy inbox and attend to patient requests to access, amend, or restrict their medical records per HIPAA regulations
- Collaborated with IT teams, legal counsel, and other departments to ensure coordinated efforts to protect PHI
Brand Manager (Cardio-Metabolic Franchise) West Africa
Novartis Pharmaceutical Services
11.2012 - 05.2016
- Develops marketing and promotional mix to meet brand objectives and customer needs
- Monitors business performance and external environment via appropriate cool to deliver corrective action to meet business objectives
- Liaise with external agencies to deliver initiative for my brand
- Creates and delivers operational plans appropriate to the lifecycle of my brands to optimize returns
- Uses marketing principles and C4/MPH process to deliver to customer needs
- Customer mapping and stakeholder mapping and segmentation
- Disease and market understanding to develop customer insights through appropriate techniques/tools
- Support and build the team to achieve team goals
- Managed external agencies to meet team goals and deliverables
- Acts as brand champion to create enthusiasm and focus on internal and external customers and agencies
- Create promotional materials based on insights from the competitive market
- Manages brand budget accurately
- Provided on-site support to end users in SD-FI and SD-MM modules
Education
MBA - Business Administration
LAUTECH
NigeriaBachelor - Pharmacy
Ahmadu Bello University
NigeriaSkills
Policy Improvement and development
Conducting PIAs and DPIAs
Regulatory Compliance (GDPR, CCPA, HIPAA, etc)
Supporting IT Risk Management
Privacy by Design
Vendor and third-party management
NIST
ISO 27001, 27701
Privacy Audit
Breach and Incident management
Record of Processing Activities
Onetrust, TrustArc
Data processing Agreement ( DPA and SCC)
Well-experienced in monitoring PII storage
Data Subject Rights (DSARs)
Proficient in Data Privacy Governance
Project management
Data Mapping and Classification
Training and Awareness Programs
Operating Systems: Windows OS (10,8,7, Vista), Windows Server (2012,2008), Visual Basic, net, HTML, SQL Server
Software and tools: Microsoft Office Suite, Active Directory, Database Management, Database Security, SAP ERP Application
Timeline
Snr. Data Privacy Analyst
Independent Financials
09.2021 - Current
Data Privacy Analyst II
Terumo BCT
03.2019 - 09.2021
HIPPA Officer II
NextCare Urgent Care
02.2018 - 03.2019
Brand Manager (Cardio-Metabolic Franchise) West Africa
Novartis Pharmaceutical Services
11.2012 - 05.2016
MBA - Business Administration
LAUTECH
Bachelor - Pharmacy
Ahmadu Bello University
Similar Profiles
YASHVARDHAN BHATTYASHVARDHAN BHATT
Business Development Manager at Ofbusiness/ Oxyzo FinancialsBusiness Development Manager at Ofbusiness/ Oxyzo Financials
PRAJWALIT DALAIPRAJWALIT DALAI
Financial Planning Analyst at Ameriprise FinancialsFinancial Planning Analyst at Ameriprise Financials
Greesha Babu SathiGreesha Babu Sathi
Product Manager at Mercedes Benz FinancialsProduct Manager at Mercedes Benz Financials
SARAPHINA DANSO - BSc, CISA, CISMSARAPHINA DANSO - BSc, CISA, CISM
Third Party Risk Analyst/ Data Privacy Analyst at AGO Worldwide ConsultingThird Party Risk Analyst/ Data Privacy Analyst at AGO Worldwide Consulting
SERGE SAA-LAPNETSERGE SAA-LAPNET
Data Security and Privacy Analyst (GRC Analyst) at Freddie MacData Security and Privacy Analyst (GRC Analyst) at Freddie Mac