Join to apply for the Privacy Officer role at The Canadian Centre of Recovery Excellence (CoRE) The Canadian Centre of Recovery Excellence (CoRE) is a trailblazing Crown corporation backed by the Government of Alberta, dedicated to transforming the recovery journey for individuals facing mental illness and addiction. By providing decision-makers with cuttingedge data, evidence, and actionable insights, CoRE paves the way for impactful recovery solutions. Position Summary Reporting to the Chief Privacy Officer and General Counsel, the Privacy Officer plays a key role in advancing CoREs privacy management framework. The Privacy Officer provides leadership, oversight, and expert guidance on the collection, use, disclosure, retention, and protection of personal information, while balancing operational needs, legal obligations, and risk management. Working closely with CoREs General Counsel, internal and external partners, this position ensures that privacy practices reflect bestinclass standards, and that CoRE continues to demonstrate excellence in protecting Albertans information. The position requires sound judgment, strong applied privacy expertise, and the ability to interpret and operationalize legislative requirements in a complex, multicustodian data environment. The Privacy Officer will be responsible for leading and supervising a team of professionals that may include access coordinators, records coordinators, and privacy risk and compliance analyst. This position follows a hybrid work model, with an expectation of working onsite in CoREs Calgary or Edmonton office three (3) days per week. Work arrangements may be adjusted as operational needs evolve. Responsibilities Act as CoREs designated Privacy Officer, ensuring compliance with applicable Alberta privacy and access to information legislation. Interpret legislation and regulatory guidance and provide authoritative advice on disclosure, privacy obligations, and statutory requirements. Establish and maintain governance mechanisms, including privacy policies, procedures, delegation instruments, and the Directory of Personal Information Banks. Ensure consistent application of privacyrelated provisions across CoRE, including alignment with other legislation affecting disclosure. Monitor legislative and regulatory developments related to privacy, access to information, and data governance, and advise leadership on operational implications. Manage the lifecycle of various contracts, including privacyrelated and datasharing agreements, specifically drafting, review, execution, renewals, and obligation tracking. Review and maintain privacy contract templates to ensure alignment with legislative, regulatory, and organizational requirements. Maintain updated research on evolving and updated legislative changes as well as common law precedents relevant to mental health and addiction, corporate governance, and any other subject matter falling within CoREs mandate. Maintain contract tracking mechanisms to monitor key dates, renewal terms, compliance obligations, and risk exposure. Collaborate with internal stakeholders and external service providers to ensure contractual arrangements meet privacy and data protection standards. Coordinate with General Counsel to ensure contractual language appropriately mitigates privacy and information security risks. Develop, implement, and oversee CoREs privacy management framework. Establish privacy controls governing the collection, use, disclosure, accuracy, retention, and security of personal information. Lead the development, review, approval, and ongoing maintenance of Privacy Impact Assessments (PIAs) for all new or substantially modified programs, datasets, data linkages, systems, and repository enhancements. Monitor privacy risks and recommend mitigation strategies and control improvements. Maintain documentation and records related to privacy management activities to support accountability, auditability, and continuous improvement. Lead or support the assessment and response to privacy incidents and potential breaches, including investigation, documentation, mitigation, and remediation. Determine regulatory notification requirements and coordinate communications with affected individuals and oversight bodies, as required. Identify emerging incident trends and recommend preventative improvements to privacy controls and practices. Access to Information & External Relations Oversee and administer CoREs Access to Information request process in accordance with legislative requirements, including intake, coordination, review, disclosure recommendations, and responses. Ensure compliance with statutory timelines, fee requirements, and thirdparty consultation obligations. Track and report on access to information compliance metrics and obligations as required. Serve as the primary liaison with the Office of the Information and Privacy Commissioner (OIPC) of Alberta. Coordinate and manage inquiries, investigations, mediations, audits, and related regulatory processes. Prepare summaries, reports, and recommendations for senior leadership related to regulatory matters, privacy risks, and compliance. CoRE Priorities Advancement Provide expert advisory services to leadership and staff on privacy, access to information, contractual privacy obligations, and informationsharing matters. Serve as a central point of contact for privacy or datasharing related contracts and inquiries across CoRE. Design and deliver privacy and access to information training and awareness initiatives. Promote a culture of privacy, confidentiality, responsible data use, and ethical decisionmaking across CoRE. Support integration of privacy considerations into business initiatives, partnerships, research, and datasharing activities. Lead and supervise a team of professionals, providing guidance, setting priorities, monitoring performance, and fostering collaboration. Oversee performance management activities, including conducting performance reviews and managing recruitment for all direct reports. Other duties as assigned. Education and Experience Postsecondary degree in law, business, public administration, information management, public policy, or a related discipline (Masters degree preferred). Minimum 5 years of progressive experience in privacy, access to information, information governance, compliance, legal, or regulatory roles. Membership in a Canadian law society or paralegal certification is preferred; equivalent experience will be considered. Handson experience managing access to information requests, supporting or leading PIAs, and advising on disclosure decisions. Experience responding to privacy incidents or breaches and liaising with regulatory bodies, including the OIPC of Alberta, is preferred. Experience drafting and reviewing complex contracts and privacy agreements. Knowledge, Skills, and Abilities Strong understanding of Alberta and federal privacy legislation such as Health Information Act (HIA), Protection of Privacy Act (POPA), and Access to Information Act (ATIA). Knowledge of contract law, privacy and access legislation, and data governance principles. Demonstrated ability to translate legal and privacy requirements into operational practice. Strong analytical and problemsolving skills, with sound judgment and attention to detail. Excellent writing, editing, and document management skills. Ability to manage multiple priorities and shifting deadlines. Strong interpersonal and communication skills with the ability to build effective relationships. Proficiency with Microsoft Office and familiarity with contract management or privacy compliance tools. Ability to work independently with minimal supervision and collaborate within crossfunctional teams. Pension and Benefits CoRE offers a pension plan with LAPP which provides a retirement income, survivor benefits, and early retirement options. Explore more at As part of our commitment to our employees wellbeing, CoRE is pleased to provide a group benefits plan and health spending account. This comprehensive plan includes extended health care coverage, travel insurance, dental care, specialized medical coverage, and more. Preemployment Conditions Prior to an offer of employment, candidates are required to complete and maintain satisfactory Criminal Record, Education Verification, and Canadian Work Authorization checks as well as Conflict of Interest disclosure, as applicable. Candidates who have completed postsecondary studies outside of Canada may be required to provide an evaluation of their credentials from the International Qualifications Assessment Service (IQAS) or from a recognized Canadian Credential Evaluator; please visit the Alliance of Credential Evaluation Services of Canada for more information. How To Apply Applicants should provide a resume and cover letter that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Closing Date January 18, 2026 We thank all applicants for their interest. All applications will be reviewed to determine which candidates qualifications most closely match the advertised requirements. Additional screening information may be requested. Candidates chosen to move forward to interview will be contacted. An eligibility list may be established to fill similar positions. CoRE is committed to inclusiveness, equity, and accessibility and encourages all qualified candidates to apply. If you require accommodation during any portion of the selection process, please let our team know at . Seniority level Entry level Employment type Fulltime Job function Finance and Sales Industries Mental Health Care #J-18808-Ljbffr
Job Title
Privacy Officer