• You will take ownership of a variety of enrollment and regulatory related work, making sound decisions as you navigate both routine and more complex situations. • You will develop new employer-specific materials and update existing content to reflect plan changes, ensuring materials align with legal plan documents, product standards and marketing guidelines. • You will continually build and apply your knowledge of defined contribution products to ensure materials align with standard product practices. • You will partner closely with stakeholders and vendors to deliver high-quality work on time while maintaining accuracy, efficiency, and managing cost. • You will maintain accurate records and oversee enrollment kit ordering. • You will spot gaps, ask questions, and continuously look for ways to improve processes, quality, and the overall experience, promoting quality and continuous improvement.

• Partner with Product and Engineering on new features, architecture, and user flows to ensure privacy-by-design is integrated before launch, not retrofitted after. • Lead privacy review of AI features and AI vendors, including model training restrictions, PHI usage controls, transparency disclosures, and pre-launch governance checkpoints. • Support clinical research, outcomes tracking, and de-identification workflows so that secondary uses of data are governed under documented standards. • Triage and respond to fast-moving product and commercial requests with calibrated, written guidance. • Own day-to-day execution of core privacy operations alongside the Senior Director of Compliance, with the ability to operate independently on assigned workstreams. • Operate Fullscript’s OneTrust environment for vendor reviews, data mapping, PIAs, consumer rights requests, and reporting, including configuration of new workflows as the program scales. • Lead privacy incident response activities, including intake, triage, coordination with cross-functional stakeholders, documentation, and tracking remediation efforts through resolution. • Build trusted working relationships with stakeholders across the business so that privacy is engaged early on new initiatives rather than at the end. • Translate HIPAA, PIPEDA, Quebec Law 25, CPRA, and other applicable US state privacy laws into plain-language guidance, playbooks, and training materials the business can use without further interpretation. • Maintain ongoing monitoring of Fullscript’s privacy posture, surface emerging risk areas to the Senior Director of Compliance.

• Own and deliver BAU compliance support across IE-regulated entities, including activities subject to CASP and EMI requirements, and relevant conduct and market integrity considerations • Maintain and enhance the IE-regulated entities compliance framework (policies, procedures, governance materials, reporting calendar) to reflect business changes and IE regulatory expectations • Act as a trusted partner to Product, Design, Engineering and Markets teams to assist them to structure and launch products and services and controls • Lead and execute assurance monitoring and testing (risk-based), document findings clearly, and drive pragmatic remediation with accountable owners and timelines • Support regulatory engagement, including responses to information requests, examinations/audits, and routine/periodic reporting obligations where relevant • Review and advise on customer-facing communications and marketing for compliance risk and conduct considerations • Produce reliable management information for senior stakeholders (KRIs, monitoring outcomes, remediation progress, training completion) and assist in preparing reports for Committee and Board meetings on compliance related matters • Provide guidance and monitor outsourced compliance functions (e.g. marketing/complaints) to ensure compliance with CBI/EBA outsourcing guidelines and relevant requirements under MiCA/PSD2/CPC • Develop and deliver compliance training programs, ensuring employees are knowledgeable and aware of their obligations • Provide compliance advisory support and guidance to COs and EU Regional Compliance team on new and existing regulations and rules, best practices and compliance with internal procedures and directives • Ensure all Policies and Procedures are updated and submitted through appropriate governance forums • Contribute to a culture of compliance through training, clear guidance, and practical partnership with the business

• Advancing the execution of the Global Quality vision, policies, processes, and decisions • Collaborate with stakeholders to identify, communicate, and mitigate compliance risks • Continually enhance partnerships with key stakeholders and leaders across the business • Support and drive the implementation of quality and compliance projects and objectives • Stay updated on regulations and recommend proactive compliance changes when necessary • Execute against GVP Compliance processes and best practices • Perform GVP audits and contribute to the effective implementation of the Global GVP Audit Program • Act as a GVP compliance core team member on regulatory inspection teams and support mock readiness activities • Provide insights to continually optimize the GVP Compliance Audit Program • Contribute to Pharmacovigilance System Master File (PSMF) updates • Contributor to the Risk Evaluation and Mitigation Strategies (REMS) compliance program • Contribute to building a team that ensures GVP compliance and foster a culture of teamwork and mutual respect • Mentor and support the development of junior staff to achieve their full potential