CrawlJobs Logo
1Password Logo 1Password · Legal

Privacy and Data Protection Manager

United States; Canada Employment contract 113000.00 - 153000.00 USD; CAD / Year · Job Posted March 26, 2025

Job offer has expired

Job Link Share

Job Description

As the Privacy and Data Protection Program Manager you will be responsible for supporting the company’s global privacy and data protection programs. This role will ensure that 1Password complies with international, federal, and local data protection regulations, including the GDPR, PIPEDA, CCPA, and other relevant data privacy laws. The ideal candidate will be adept at legal research, compliance monitoring, and providing guidance on privacy-related matters. They will work closely with various internal teams, such as IT, HR, Marketing, and Operations, to implement and maintain effective data protection practices.

Job Responsibility

  • Support research efforts on privacy-related legal developments, regulatory changes, and enforcement trends
  • Help analyze how changes in privacy laws may affect 1Password’s business operations
  • Collaborate with the commercial legal team in drafting and reviewing privacy-related agreements, including data processing agreements (DPAs) and vendor contracts
  • Monitor updates in data privacy laws and regulations and share insights with internal teams
  • Assist in developing and implementing internal privacy policies and procedures that align with legal requirements and industry standards
  • Help maintain accurate records of incidents and support compliance with the 1Password’s incident response plan
  • Assist in preparing data breach notifications for regulatory authorities and impacted individuals, as required
  • Review and assess third-party service providers’ privacy practices to ensure alignment with the 1Password’s data protection standards
  • Advise on due diligence processes for onboarding new vendors, partners or customers, ensuring compliance with contractual and legal obligations
  • Support the management and organization of vendor data processing agreements and related documents

Requirements

  • Bachelor's degree in Business, Legal Studies, or a related field
  • Juris Doctor from an accredited law school preferred
  • Experience working with privacy regulations such as GDPR, PIPEDA, CCPA/CPRA, and other regional or industry-specific privacy laws
  • 2-5 years of experience in a legal, compliance, privacy role, preferably in a company serving customers globally
  • Experience conducting privacy impact assessments, audits, or compliance monitoring
  • Strong attention to detail and ability to handle confidential information with discretion
  • Excellent written and verbal communication skills, with the ability to explain complex legal concepts to non-legal stakeholders
  • Problem-solving mindset and ability to work independently, as well as collaboratively within cross-functional teams
  • Strong organizational skills and ability to manage multiple tasks simultaneously in a fast-paced environment
  • Proficiency in legal research and privacy management tools
  • Strong understanding of data protection technologies and information security principles (e.g., encryption, pseudonymization, access controls)
  • Familiarity with IT systems, databases, and data flow mapping

Nice to have

  • Ability to work with international teams and understand cross-border data transfer rules
  • Work experience in Privacy, Data Protection, Compliance, or a related field
  • Privacy certification (e.g., Certified Information Privacy Professional (CIPP/C CIPP/US or CIPP/EU))

What we offer

  • Maternity and parental leave top-up programs
  • Wellness spending allowance
  • Generous PTO policy
  • Company-wide wellness days off scheduled throughout the year
  • Wellness Coach membership
  • Comprehensive health coverage
  • Company equity for all full-time employees
  • Retirement matching program
  • Training budget, 1Password University access, and learning sessions
  • Free 1Password account (and friends and family discount!)
  • Paid volunteer days
  • Employee-led DEIB programs and ERGs and ECGs
  • Fully remote environment
  • Peer-to-peer recognition through Bonusly
1Password - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Privacy and Data Protection Manager

8 matching positions

Privacy and Data Protection Manager

As the Privacy and Data Protection Program Manager you will be responsible for s...
Location
Location
United States; Canada
Salary
Salary:
113000.00 - 153000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Business, Legal Studies, or a related field
  • Juris Doctor from an accredited law school preferred
  • Experience working with privacy regulations such as GDPR, PIPEDA, CCPA/CPRA, and other regional or industry-specific privacy laws
  • 2-5 years of experience in a legal, compliance, privacy role, preferably in a company serving customers globally
  • Experience conducting privacy impact assessments, audits, or compliance monitoring
  • Strong attention to detail and ability to handle confidential information with discretion
  • Excellent written and verbal communication skills, with the ability to explain complex legal concepts to non-legal stakeholders
  • Problem-solving mindset and ability to work independently, as well as collaboratively within cross-functional teams
  • Strong organizational skills and ability to manage multiple tasks simultaneously in a fast-paced environment
  • Proficiency in legal research and privacy management tools
Job Responsibility
Job Responsibility
  • Legal Research & Analysis: Support research efforts on privacy-related legal developments, regulatory changes, and enforcement trends
  • Help analyze how changes in privacy laws may affect 1Password’s business operations
  • Collaborate with the commercial legal team in drafting and reviewing privacy-related agreements, including data processing agreements (DPAs) and vendor contracts
  • Monitor updates in data privacy laws and regulations and share insights with internal teams
  • Assist in developing and implementing internal privacy policies and procedures that align with legal requirements and industry standards
  • Incident Management: Help maintain accurate records of incidents and support compliance with the 1Password’s incident response plan
  • Assist in preparing data breach notifications for regulatory authorities and impacted individuals, as required
  • Vendor Management: Review and assess third-party service providers’ privacy practices to ensure alignment with the 1Password’s data protection standards
  • Advise on due diligence processes for onboarding new vendors, partners or customers, ensuring compliance with contractual and legal obligations
  • Support the management and organization of vendor data processing agreements and related documents
What we offer
What we offer
  • Health, dental, 401k and many others
  • Generous paid time off
  • Equity grant
  • Participation in incentive programs
  • Maternity and parental leave top-up programs
  • Competitive health benefits
  • Generous PTO policy
  • RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Fulltime
Read More
Arrow Right

Privacy and Data Protection Lawyer

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Law degree
  • 0–2 years of experience in Data Protection, Compliance, Regulatory Affairs, or related legal practice
  • Knowledge of GDPR principles and the national legal framework on data protection
  • Strong analytical skills, accuracy, and legal rigour
  • Ability to translate legal requirements into clear business-oriented guidance
  • Basic knowledge of Data Protection, Information Security, or Compliance frameworks
  • Familiarity with legal support tools or document management systems
  • Experience in technology, telecom, consultancy, or regulatory environments
  • Ability to work with multidisciplinary teams
  • Fluency in English
Job Responsibility
Job Responsibility
  • Draft and review contractual clauses, data processing agreements, and legal documentation related to data protection
  • Analyse legal and regulatory requirements and produce internal legal opinions and guidance
  • Support the interpretation and application of the GDPR, national data protection law, and Group requirements
  • Conduct legal risk assessments on data protection and compliance topics
  • Support responses to regulatory authorities and prepare draft replies when required by the DPO or senior team members
  • Contribute to governance, compliance, security, and risk management initiatives with legal relevance for data protection
  • Cooperate with internal teams (Technology, Security, Commercial, HR, etc.) by clarifying legal requirements
  • Monitor legislative and regulatory developments relevant to data protection
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Privacy and Data Protection Lawyer

The Senior Data Protection Lawyer plays a pivotal role in ensuring Vodafone Port...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Law degree (LL.B. or equivalent)
  • 5+ years of experience in Data Protection, Regulatory Affairs, Compliance, or related legal practice
  • Deep knowledge of GDPR and Portuguese data protection law
  • Demonstrated experience in complex assessments, contract negotiation, and advisory work related to data protection
  • Strong knowledge of data protection, information security, and governance frameworks
  • Familiarity with privacy tools used for risk assessment, data mapping, incident management, and compliance monitoring
  • Professional privacy certification (e.g., CIPP/E, CIPM, CIPT, or equivalent) highly valued
  • Strong analytical, critical-thinking, and legal interpretation skills
  • Excellent communication and stakeholder-management skills, including with senior leadership
  • Experience in telecom, technology, consultancy, or other regulated sectors
Job Responsibility
Job Responsibility
  • Lead complex DPIAs, LIAs, data transfer assessments, lawful basis analyses, and broader data protection risk evaluations, ensuring legally sound and business-aligned recommendations
  • Draft, review, and negotiate data protection clauses, data processing agreements, and contracts with data protection relevance, ensuring alignment with legal requirements and internal governance frameworks
  • Oversee regulatory monitoring concerning data protection laws and ensure fulfilment of internal compliance obligations, producing expert recommendations and supporting remediation and continuous improvement actions
  • Provide senior legal support to Business Continuity, Crisis Management, Cybersecurity, Technology, HR, and other multidisciplinary teams in matters involving data protection requirements
  • Act as a strategic advisor on data protection compliance, lawful bases, data minimisation, purpose limitation, retention, and governance of processing activities in new products, services, and operational initiatives
  • Represent the DPO Office in interactions with internal governance bodies and external regulators, where appropriate
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Counsel, Privacy, Ai, And Data Protection

The Counsel for Privacy, AI, and Data Protection serves as the enterprise subjec...
Location
Location
United States , Lexington
Salary
Salary:
150000.00 - 175000.00 USD / Year
valvolineglobal.com Logo
Valvoline Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor (JD) degree from an accredited law school and active license to practice law in at least one U.S. jurisdiction
  • Minimum of 8-12 years of legal experience, with significant focus on privacy, data protection, cybersecurity, and/or technology law
  • Demonstrated expertise in U.S. and global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA) and strong familiarity with emerging AI regulatory requirements
  • Experience advising on AI/ML technologies, data-driven business models, or digital products, including governance and risk management considerations
  • Proven experience building or supporting global privacy programs and operationalizing compliance frameworks (e.g., DPIAs, DSARs, data mapping)
  • Strong experience partnering with Product, Engineering, IT, and Security teams to translate legal requirements into practical solutions
  • Demonstrated ability to operate independently, manage complex cross-functional initiatives, and provide strategic, risk-based legal advice
  • Excellent communication, negotiation, and stakeholder engagement skills, with the ability to influence senior leaders
  • Ability to travel (approximately 10-20%) to support global business initiatives and team engagement
  • Collaborate effectively across global time zones, providing support to regional stakeholders and participating in meetings outside standard business hours as needed to support a globally distributed organization
Job Responsibility
Job Responsibility
  • Accountable for the design, implementation, and ongoing effectiveness of Valvoline's global privacy program, including governance structure, policies, and operational processes
  • Owns enterprise interpretation and application of global privacy laws (e.g., GDPR, CCPA/CPRA), establishing company-wide standards and guidance
  • Accountable for core privacy program operations, including DPIAs/PIAs, DSAR processes, data mapping, and records of processing activities, ensuring they are scalable, auditable, and consistently executed
  • Establishes and monitors program KPIs and metrics to measure compliance, maturity, and operational effectiveness
  • drives remediation where gaps exist
  • Leads integration of privacy-by-design principles into business processes, systems, and product development, ensuring consistent adoption across functions
  • Accountable for the enterprise AI governance framework, including policy development, risk classification models, and required controls
  • Owns the legal review and risk determination framework for AI/ML use cases, including defining approval thresholds and escalation criteria
  • Ensures AI initiatives meet regulatory, ethical, and internal governance standards, providing final legal guidance on high-risk or ambiguous use cases
  • Translates global AI regulatory developments into enforceable internal requirements, ensuring timely adoption across the enterprise
What we offer
What we offer
  • Health insurance plans (medical, dental, vision)
  • Health Savings Account (with an employer-base deposit and match)
  • Flexible spending accounts
  • Competitive 401(k) with generous employer base deposit and match
  • Incentive opportunity
  • Life insurance
  • Short- and long-term disability insurance
  • Paid vacation and holidays
  • Employee Assistance Program
  • Employee discounts
  • Fulltime
Read More
Arrow Right

Counsel, Privacy, AI, and Data Protection

Why Valvoline Global Operations? At Valvoline Global Operations, we're proud to ...
Location
Location
United States , Lexington
Salary
Salary:
150000.00 - 175000.00 USD / Year
valvoline.com Logo
Valvoline
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor (JD) degree from an accredited law school and active license to practice law in at least one U.S. jurisdiction
  • Minimum of 8–12 years of legal experience, with significant focus on privacy, data protection, cybersecurity, and/or technology law
  • Demonstrated expertise in U.S. and global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA) and strong familiarity with emerging AI regulatory requirements
  • Experience advising on AI/ML technologies, data-driven business models, or digital products, including governance and risk management considerations
  • Proven experience building or supporting global privacy programs and operationalizing compliance frameworks (e.g., DPIAs, DSARs, data mapping)
  • Strong experience partnering with Product, Engineering, IT, and Security teams to translate legal requirements into practical solutions
  • Demonstrated ability to operate independently, manage complex cross-functional initiatives, and provide strategic, risk-based legal advice
  • Excellent communication, negotiation, and stakeholder engagement skills, with the ability to influence senior leaders
  • Ability to travel (approximately 10–20%) to support global business initiatives and team engagement
  • Collaborate effectively across global time zones, providing support to regional stakeholders and participating in meetings outside standard business hours as needed to support a globally distributed organization
Job Responsibility
Job Responsibility
  • Accountable for the design, implementation, and ongoing effectiveness of Valvoline's global privacy program, including governance structure, policies, and operational processes
  • Owns enterprise interpretation and application of global privacy laws (e.g., GDPR, CCPA/CPRA), establishing company-wide standards and guidance
  • Accountable for core privacy program operations, including DPIAs/PIAs, DSAR processes, data mapping, and records of processing activities, ensuring they are scalable, auditable, and consistently executed
  • Establishes and monitors program KPIs and metrics to measure compliance, maturity, and operational effectiveness
  • drives remediation where gaps exist
  • Leads integration of privacy-by-design principles into business processes, systems, and product development, ensuring consistent adoption across functions
  • Accountable for the enterprise AI governance framework, including policy development, risk classification models, and required controls
  • Owns the legal review and risk determination framework for AI/ML use cases, including defining approval thresholds and escalation criteria
  • Ensures AI initiatives meet regulatory, ethical, and internal governance standards, providing final legal guidance on high-risk or ambiguous use cases
  • Translates global AI regulatory developments into enforceable internal requirements, ensuring timely adoption across the enterprise
What we offer
What we offer
  • Health insurance plans (medical, dental, vision)
  • Health Savings Account (with an employer-base deposit and match)
  • Flexible spending accounts
  • Competitive 401(k) with generous employer base deposit and match
  • Incentive opportunity
  • Life insurance
  • Short- and long-term disability insurance
  • Paid vacation and holidays
  • Employee Assistance Program
  • Employee discounts
  • Fulltime
Read More
Arrow Right

Data Protection and Security Manager

We are looking for an experienced Data Protection & Security Manager to join the...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
n26.com Logo
N26
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Law, Information Security, Information Technology, Risk Management, or a related field would be preferable but not mandatory
  • Professional privacy certifications such as IAPP CIPP/E / CIPM
  • Professional security management certifications such as CISA / CISM / CRISC, or equivalent are preferable
  • Minimum of 3–5 years of experience in data protection / privacy risk management, ideally within the banking or financial services industry
  • Experience working with risk and control frameworks, audits, regulatory readiness, and remediation tracking is highly advantageous
  • An understanding of information security concepts (e.g., access control, logging, encryption, incident management) and how they intersect with privacy requirements
  • Experience with third-party / outsourcing privacy topics (e.g., DPAs, sub-processors, PIAs/TIAs, vendor risk inputs)
  • Should be able to leverage modern tooling (including AI where appropriate) to improve risk reporting
  • Strong stakeholder management skills
  • Strong project and prioritisation skills
Job Responsibility
Job Responsibility
  • Design, maintain and continuously improve the data protection risk management framework
  • Maintain the Data Protection Controls Effectiveness Testing and Evaluation Procedure
  • Maintain and further develop the data protection risk register and key metrics
  • Act as a 2LoD point of contact for internal data protection–related topics
  • Ensure the proper and timely involvement of the DPO in all relevant personal data protection matters
  • Manage the DPO mailbox / dedicated data protection mailbox
  • Develop and prepare regular privacy and data protection risk reports and global “health check” overviews
  • Manage or support the Data Protection General Training & Awareness program and required privacy-related trainings
  • Work cross-functionally and build strong relationships to strengthen and enhance data privacy compliance
  • Monitor regulatory developments and emerging privacy and cyber/ Information security risks
What we offer
What we offer
  • Accelerate your career growth
  • Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation
  • Access to a Premium subscription on your personal N26 bank account
  • Additional day of annual leave for each year of service
  • A high degree of autonomy and access to cutting edge technologies
  • A relocation package with visa support for those who need it
Read More
Arrow Right

Data Protection Manager

To provide regulatory compliance assistance and assurance across the company as ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CIPPE/ CIPM/ or any other relevant qualification in Data Protection
  • Working knowledge of European and international data privacy laws
  • Experience in completing DPIAs
  • Experience in handling DSARs
  • Experience working in a global organization
  • Experience in creating reports for the C-Suite
Job Responsibility
Job Responsibility
  • Provide day to day support to the Data Protection Officer in fulfilling the Data Protection Strategy
  • Review supplier contracts and update with data protection clauses
  • Handle data subject access requests and e-discovery requests in a timely manner
  • Conduct a data mapping exercise to ascertain where all our personal data resides
  • Build rapport with stakeholders across the business to provide added value
  • Work together with the DPO on maintaining group-wide data protection policies, guidelines, processes
  • Report on data protection issues to the DPO in a timely manner
  • Support the DPO in all internal and external audits
  • Manage the data protection mailbox and escalate to the DPO accordingly
  • Maintain the Record of processing activities register and update accordingly
  • Fulltime
Read More
Arrow Right

Counsel – Privacy & Data Protection

Mastercard’s global Commercial and New Payment Flows (CNPF) Privacy team is seek...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Qualified lawyer with a strong academic foundation and solid legal training
  • Additional certifications (e.g., IAPP) are a plus
  • Keen interest in global data privacy developments and a working knowledge of privacy and data protection frameworks (e.g., GDPR
  • familiarity with others like CCPA is helpful but can be learned on the job) with some practical experience applying them, previous inhouse or technology/privacy exposure is beneficial
  • Familiarity with financial services, payments, or digital products is preferred, or a strong willingness to learn about these sectors
  • Experience with privacy platforms such as OneTrust is an advantage
  • Curiosity about digital technologies and an interest in how they intersect privacy and data governance
  • Proactive, practical, and eager to translate legal requirements into clear, usable guidance with support from senior team members
  • Strong verbal and written communication skills, with the ability to simplify complex information for non-legal audiences
  • Highly organized, detail-oriented, and able to manage multiple tasks in a fast-paced environment
Job Responsibility
Job Responsibility
  • Provide day to day privacy support to business teams, handling product queries and operational issues, and escalating complex matters where needed
  • Support the CNPF privacy team, including Move (Mastercard Send and Cross Border Services), by preparing guidance, assessments, and initial reviews for product initiatives and market expansion
  • Advise across the broader CNPF space (including B2B payments and SME solutions) on data use, AI enabled products, data flows, and controller/processor roles in multi party ecosystems
  • Embed Privacy by Design into the product lifecycle through initial impact assessments, risk screenings, and alignment with Mastercard’s privacy and AI governance frameworks
  • Assist with responses to government data requests, RFIs, and CDD inquiries by gathering inputs, preparing drafts, and ensuring compliance with internal and legal requirements
  • Support contracting by drafting and reviewing standard data protection terms, preparing for negotiations, and escalating higher risk issues
  • Monitor regulatory developments and contribute to legal scans, providing clear, practical summaries of key impacts
  • Help build privacy awareness across the business, including developing training materials and supporting capability building efforts
  • Collaborate across teams to ensure consistent application of privacy requirements and effective follow through on actions
  • Fulltime
Read More
Arrow Right