Privacy and Data Protection Manager

Bachelor's degree in Business, Legal Studies, or related field; Juris Doctor preferred. Experience with privacy regulations such as GDPR, PIPEDA, CCPA/CPRA, and other regional or industry-specific privacy laws. 2-5 years of experience in a legal, compliance, privacy role, preferably in a company serving customers globally. Experience conducting privacy impact assessments, audits, or compliance monitoring. Strong attention to detail and ability to handle confidential information with discretion. Excellent written and verbal communication skills. Problem-solving mindset and ability to work independently and collaboratively. Strong organizational skills and ability to manage multiple tasks. Proficiency in legal research and privacy management tools. Strong understanding of data protection technologies and information security principles. Familiarity with IT systems, databases, and data flow mapping. Ability to work with international teams and understand cross-border data transfer rules (bonus). Privacy certification (e.g., CIPP/C, CIPP/US, CIPP/EU) (bonus).

Support research on privacy-related legal developments and regulatory changes. Analyze how privacy law changes affect business operations. Collaborate on drafting and reviewing privacy-related agreements. Monitor updates in data privacy laws and regulations. Assist in developing and implementing internal privacy policies. Maintain incident records and support the incident response plan. Assist in preparing data breach notifications. Review third-party service providers' privacy practices. Advise on due diligence for onboarding vendors, partners, or customers. Support management of vendor data processing agreements.