CrawlJobs Logo

Privacy Compliance Director

United States Of America, Newton Employment contract 122000.00 - 140000.00 USD / Year · Job Posted May 28, 2026
Apply Position
Job Link Share

Job Description

The Privacy Compliance Director owns and governs the global Privacy Compliance program to ensure compliance with legal and regulatory requirements, and the implementation of control frameworks and best practices. This role is accountable for aligning global teams, stakeholders, and external vendors on program roadmaps, and providing guidance to global teams on privacy program requirements, processes, and best practices.

Job Responsibility

  • Owns and drives privacy accountability and compliance across the company by administering effective processes and leadership oversight.
  • Defines and evolves the enterprise privacy compliance strategy, enterprise-wide standards for global assessment methodologies, risk scoring, and reporting.
  • Manages, and performs, vendors and asset assessments across all locations.
  • Collaborates with internal stakeholders, external consultants, and vendors to clarify assessment responses, evaluate risks, and agree treatment plans.
  • Creates and manages risks for the Privacy and Information Security teams.
  • Develops and maintains process and procedure documentation for areas of responsibility.
  • Provides guidance to business partners on the implementation and adherence to privacy by design related concepts, policies and procedures.
  • Sets direction and oversees the use of Privacy Management Tools (OneTrust, Teams, ADO, SharePoint).
  • Utilizes the privacy management tools to ensure optimization of documentation of and reporting on the global privacy compliance program.
  • Guides team with requirements documentation, conduct, coordinate and execute system test plans.
  • Assists system users on data entry into the privacy management assessments to ensure consistent practices and outputs.
  • Contributes to the development and maintenance of global Privacy and Information Security policies, procedures, and standards impacting direct areas of responsibility.
  • Drives process improvements and Privacy & Information Security program quality.
  • Evaluates quality of data entry and assessment responses.
  • Develops and implements recommendations to improve data quality for areas of responsibility.
  • Monitors assessment and other privacy program related processes for potential and realized delays and quality issues.
  • Proactively partners with key stakeholders to prepare root cause analysis and remediation plans. Tracks and report on issues and root causes.
  • Sponsors and leads complex, privacy driven initiatives and activities:
  • Evaluates and partners with Privacy, Security and global business partners to assess and execute plans for regulatory readiness efforts.
  • Sets direction for privacy compliance audit activities and facilitates risk management program design, remediation analysis, residual risk evaluation, and control documentation updates.
  • Serves as the senior escalation point for program risks, assessment blockers, vendor issues, and cross‑regional privacy challenges.
  • Designs and provides management KPIs, performance reports and other insights for areas of responsibility.
  • Travel: 0-5%

Requirements

  • 10 years experience in supporting Privacy Compliance and Risk Management team, managing a large portfolio of asset, vendor, and PIA assessments for a large multi-national corporation with limited oversight
  • 7 years experience using and/or configuring Governance, Risk & Compliance tools such as OneTrust and TrustArc to perform assessments and risk management
  • Bachelor's Degree in Law, Information Security, Accounting, Information Systems degree. 5+ years of additional experience would be considered in lieu of degree.

Nice to have

  • ISO 27001/27701 and SOC2 audit experience
  • Certified Information Privacy Manager (CIPM) is required within 12 months - Preferred. CIPP and AIPP, desired.
  • Expert-level understanding and application of Privacy and Information Security frameworks (e.g. GDPR, CPRA), best practices, controls and risk management strategies.
  • Advance program and people leadership skills and experience in team capacity planning, goal setting, coaching, and performance management for internal teams and vendors.
  • Expert ability to influence internal and external employees, contractors, and vendors

What we offer

  • Medical, dental, and vision insurance
  • Paid vacation, sick, holiday, and parental bonding leave
  • 401(k) retirement plan
  • Long-term and short-term disability insurance
  • Life insurance
  • Money-saving discounts and financial planning tools
  • Tuition assistance and education coaching
  • Caregiving support and resources for the children and adults in your family

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Privacy Compliance Director

8 matching positions

Director, Privacy Operations

The Director, Privacy Operations, leads and governs enterprise-wide privacy oper...
Location
Location
United States , Newton
Salary
Salary:
124000.00 - 147000.00 USD / Year
brighthorizons.com Logo
Bright Horizons
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Information Security, Information Systems, Law, or Accounting. 3+ years of additional experience would be considered in lieu of degree
  • 10 years experience in privacy operations, compliance, audit or data protection/management roles in a multinational organization in a highly regulated or scrutinized industry
  • 5 years experience managing system changes and configuring Governance, Risk & Compliance tools such as OneTrust or TrustArc in a controlled IT environment
Job Responsibility
Job Responsibility
  • Owns the delivery of enterprise privacy operations strategy and multi-year roadmap
  • Provides governance leadership and direct support for the GRC platform (e.g., OneTrust): configuration standards, access models, integrations, release/change management, and data quality in partnership with IT and Security
  • Establishes and oversees policies, standards, and operating procedures for Tracking Technologies (cookies, SDKs, pixels, device IDs)
  • monitors compliance, assesses risk, and drives remediation across products and channels
  • Directs the privacy incident management program: intake, triage, investigation, root-cause analysis, corrective actions, and regulatory readiness
  • maintains incident templates and workflows within the GRC platform and chair incident review forums
  • Owns the design and generation of performance metrics and reports for Privacy function and management
  • Leads cross-functional delivery for privacy-by-design and technical implementation guidance
  • Owns business continuity and disaster recovery (BC/DR) strategies and test plans for privacy systems and tools
  • Stays abreast of vendor roadmaps, emerging technologies, and regulatory developments then translates needs into executable operational requirements and standards
What we offer
What we offer
  • Bonus
  • RSUs
  • Medical, dental, and vision insurance
  • Paid vacation, sick, holiday, and parental bonding leave
  • 401(k) retirement plan
  • Long-term and short-term disability insurance
  • Life insurance
  • Money-saving discounts and financial planning tools
  • Tuition assistance and education coaching
  • Caregiving support and resources for the children and adults in your family
  • Fulltime
Read More
Arrow Right

Senior Director, Privacy and Cybersecurity

The Senior Director, Privacy and Cybersecurity provides leadership to protect Un...
Location
Location
United States , Alexandria
Salary
Salary:
144000.00 - 180000.00 USD / Year
unitedway.org Logo
United Way
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree required
  • Master's in Cybersecurity, Computer Science, or related field strongly preferred.
  • CISSP, CISM, CIPT or other Security Certification required.
  • 10+ years of expert-level experience in privacy, cybersecurity, or cyber law, with 5+ years experience in managing security team.
  • Excellent organization, communication, and motivational skills with an attention to detail.
  • Demonstrated success in cybersecurity program development and staff training/awareness.
  • Experience in facilitation bringing end users to appropriate solutions involving an appropriate balance between end user requirements and risk minimization.
  • A self-starter attitude and strong interpersonal skills with the ability to work independently and collaboratively and ability to interact with people at all levels.
  • Solid understanding of Privacy regulations, data management practices, and IT systems.
  • Understanding of large-scale System Development Life Cycle (SDLC) in addition to experience with implementation, integration, interfaces, data use mapping and flow design.
Job Responsibility
Job Responsibility
  • Serve as the Data Protection Officer (DPO) for United Way Worldwide
  • Monitor, interpret, and implement compliance with global privacy regulations (GDPR, CCPA, HIPAA, PIPEDA, etc.), along with analyzing and advising on recent trends for non-profit organizations
  • Lead alignment with established and emerging privacy laws and regulations applicable to local United Ways at a global level.
  • Develop, deliver, and drive awareness of data privacy and security privacy programs and training
  • Champion Privacy by Design when developing, implementing, or considering new data systems
  • Provide guidance and feedback in contracting/purchasing process to ensure vendors meet security/privacy requirements and to advise on optimizing data matters such as data minimization, flow, and security
  • Conduct Privacy Impact Assessments (PIA: Privacy of Data) and Data Privacy Impact Assessments (DPIA: Risk) and Transfer Impact Assessments (TIA)
  • Identify, build, or implement tools to manage privacy across systems
  • Oversee and manage Data Subject Access Request processes
  • Lead cybersecurity program in alignment with NIST CSF and NIST SP 800-53. Operationalize security practices.
What we offer
What we offer
  • health
  • dental
  • life
  • short-term and long-term disability
  • employee assistance program
  • 403(b) plan
  • tuition assistance
  • paid time off
  • family sick leave
  • medical appointment leave
  • Fulltime
Read More
Arrow Right

Senior Legal Counsel - Data Privacy & Compliance

We’re hiring a Senior Legal Counsel dedicated to Data Privacy & Compliance - som...
Location
Location
United Kingdom , Dunstable
Salary
Salary:
Not provided
whitbreadinns.co.uk Logo
Whitbread Inns
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep expertise in UK data protection law (EU desirable)
  • Experience handling large volumes of consumer and/or employee data (B2C essential)
  • Strong policy‑writing skills — capable of building frameworks from scratch and owning them
  • Experience in drafting and implementing procedures, controls and compliance programmes
  • Comfortable engaging with senior stakeholders and influencing across the business
  • Ability to operate with a high level of autonomy and enthusiasm
  • Private‑practice background welcome
  • in‑house experience is a bonus, not a requirement
Job Responsibility
Job Responsibility
  • Lead on UK data protection compliance, advising across Whitbread’s end‑to‑end consumer and employee data lifecycle
  • Develop, maintain and embed group‑wide policies, procedures and data governance frameworks
  • Manage and optimise our relationship with the UK’s outsourced DPO
  • Provide best‑practice guidance to operations in Ireland, Germany and China
  • Deliver DPIAs, ROPAs, DSAR handling, and data‑related litigation management
  • Advise on CRM, digital marketing, cookies, and marketing consent
  • Draft and negotiate data processing/sharing agreements
  • Guide IT teams to ensure privacy is embedded from the very beginning of any change or initiative
  • Own and evolve a broad compliance portfolio, including: Code of Conduct governance and communication
  • Competition law risk and training
What we offer
What we offer
  • bonus
  • 10% matched pension
  • health care
Read More
Arrow Right

Healthcare Compliance Director

The Healthcare Compliance Director will be responsible for leading the healthcar...
Location
Location
United States
Salary
Salary:
170000.00 - 200000.00 USD / Year
equip.health Logo
Equip Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in healthcare compliance, clinical operations, or clinical quality & safety
  • A strong understanding of both clinical operations and the broader healthcare ecosystem, including reimbursement and policy landscapes
  • Expertise in federal, state, and payor regulations, accreditation standards, and clinical governance frameworks. Medicaid experience required
  • Experience with multi-state virtual care regulations and clinical compliance
  • Demonstrated experience successfully managing audits and investigations, identifying issues and incidents, and managing cross-functional coordination to implement corrective action and remediation plans
  • Experience with clinical documentation compliance, coding/billing compliance, and high-risk workflow oversight, with a demonstrated ability to interpret trends, evaluate exposure, and guide sustainable remediation
  • Outstanding verbal and written communication skills, with a talent for translating regulations into operational guidance and gaining buy-in as well as cultivating and maintaining relationships
Job Responsibility
Job Responsibility
  • Ensure adherence to federal, state, local, and payer regulations and contractual obligations in collaboration with Legal and Equip’s Privacy and Security Officers, staying current with evolving healthcare laws, including Medicaid requirements, and implement accreditation standards (e.g., The Joint Commission)
  • Develop, review, and update compliance policies, governance documents, and SOPs with clinical leaders, ensuring policies reflect current regulations
  • Conduct internal compliance audits, focusing on high-risk workflows, and report material findings to relevant leaders across the organization
  • Work cross-functionally to support external audits, monitor medical records as well as billing and coding for documentation and quality alignment
  • Perform clinical risk assessments and track corrective actions for sustainable remediation
  • Develop and deliver tailored compliance trainings, including regulatory updates, risk themes, onboarding integration, and annual targeted sessions based on audit insights
  • Investigate compliance violations and incidents and manage compliance reporting systems, document incidents with root-cause analysis, and coordinate reporting with Legal and HR as required
  • Identify and report any potential compliance risks within business workflows, cross-functional processes, and implement corrective actions and enforce Legal guidance on fraud, waste, and abuse
  • Maintain all clinical compliance documentation, logs, registers, and evidence and create audit records and prepare leadership reports with actionable insights
  • Liaise with payors and regulatory bodies, collaborate with internal and outside legal counsel on risk alignment, report systemic trends/mitigation progress to leadership, and support external audits (e.g. accreditation, payor, etc.)
What we offer
What we offer
  • Flex PTO (3-5 wks/year recommended) + 11 paid company holidays
  • Generous parental leave
  • Competitive Medical, Dental, and Vision plans with generous employer contributions for both individuals and families
  • Company-paid Short-Term Disability, Long-Term Disability, Life and AD&D insurance
  • Company-paid partnership with Maven Clinic to provide comprehensive reproductive and family care resources
  • Employee Assistance Program (EAP), a company-paid resource for mental health, legal services, financial support, and more!
  • 401(k) retirement plan
  • Fulltime
Read More
Arrow Right

Legal Director, Privacy

Activision Blizzard King seeks a Director to join our legal team to have a signi...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
activision.com Logo
Activision
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • PQE 8+ (or equivalent) with experience gained in a similar role, preferably including in-house, and with significant exposure to data protection and privacy regulations in Europe and preferably digital safety and/or platform regulations
  • Experience and knowledge of UK and European laws
  • Strong experience advising on data protection and privacy and digital safety requirements in sophisticated market scenarios
  • Qualified to practice law in the UK or equivalent qualifications in another relevant jurisdiction
  • Excellent attention to detail, written & communication skills (English)
  • Good understanding of online technologies and their privacy and digital safety implications
  • Strong organizational skills, with an ability to identify, prioritize, and resolve issues quickly and effectively in a complex, fast-moving organisation
  • Ability to manage varied workload through proper work balance, prioritisation and delegation
  • Strong interpersonal skills, with the ability to communicate effectively with individuals at all levels of the organisation and across group legal teams
  • Full commitment to the position and a passion for privacy and digital safety
Job Responsibility
Job Responsibility
  • Lead various global privacy projects to ensure compliance with new privacy and digital safety laws and regulations in different parts of the business, including games and marketing
  • Collaborate with international cross-functional teams on a variety of products and services (games, shared & central tech, marketing and advertising/adtech teams) to ensure privacy compliance, and advise them on emerging privacy and digital safety challenges and requirements, including minor protection
  • Serve as ABK’s Data Protection Officer (DPO), with responsibility for all DPO tasks as defined in the GDPR and other privacy laws and regulations
  • Apply a risk-based approach to privacy and digital safety reviews and guidance
  • Drive improvements to processes, compliance frameworks and standard methodologies within the privacy legal team and across the broader legal organisation
  • Prepare, maintain and update privacy documentation, including data protection agreements, standard contractual clauses, and internal policies
  • Keep up to date with changes in privacy and digital safety laws, regulations and guidelines across the EMEA region and beyond that may impact the design, development and marketing of our products and services
  • Manage the group’s GDPR compliance program, including records of data processing activities (ROPA) and various privacy risk assessments including AI, data protection impact assessments (DPIA), legitimate interest assessments (LIA) and transfer impact assessments (TIA)
  • Prepare and deliver training on privacy and digital safety regulations as needed
  • Support the EMEA legal team in improving processes, efficiency, compliance framework and standard methodologies and support and oversee the team in the handling of privacy and digital safety related inquiries from customers and regulators
What we offer
What we offer
  • Free on-site gym
  • Well-stocked kitchen
Read More
Arrow Right

Senior Director Privacy Counsel

Bumble’s mission is to foster healthy and equitable relationships across the glo...
Location
Location
United States , Austin; New York
Salary
Salary:
205000.00 - 275000.00 USD / Year
bumble.com Logo
Bumble Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • J.D. degree and active bar membership in good standing
  • 12+ years of relevant privacy and data protection experience, including in-house counsel roles with U.S.-based global companies
  • Deep understanding of global privacy regulations, including GDPR, UK GDPR, CCPA/CPRA, biometric specific laws and other U.S. privacy and data security frameworks
  • Demonstrated experience leading complex data breach and incident response programs, including coordination with InfoSec, legal assessments, and notification requirements
  • Hands-on experience owning and managing ROPA, DPIAs, and other GDPR compliance artifacts
  • Practical, risk-based mindset and strong organizational skills—comfortable building scalable systems that reduce redundancy and ensure compliance
  • Ability to distill complex regulatory requirements into clear, actionable advice tailored for business partners
  • Experience building teams and/or leading through senior cross-functional partners — setting standards, coaching, and creating clarity across ambiguous, high-impact work
  • Strong interpersonal and communication skills with a proven track record of influencing and collaborating across diverse global teams, including the ability to present to and advise senior leaders across the organization and the members of the Audit Committee
  • Deep alignment with Bumble’s mission, values, and global focus
Job Responsibility
Job Responsibility
  • Define Bumble’s global privacy strategy, operating model, and multi-year roadmap, navigating new uses of member data in AI models as well as the emerging regulatory schemes that will govern this work
  • Provide critical strategic legal guidance regarding privacy usage that drives both innovation and the Company’s commitment to privacy while building an efficient & scalable privacy compliance function - and partnering hands-on with leaders across the organisation
  • Drive scalable, cross-functional privacy compliance programs aligned with global frameworks including GDPR, UK DPA, CCPA/CPRA, and other U.S. state-level privacy laws, creating a data governance framework and implementing a data governance structure
  • Provide regular privacy reporting and presentations to the Audit Committee and senior leadership, clearly communicating risk, readiness, trends, and decisions in a way that supports strong governance
  • Partner closely with an external Data Protection Officer (DPO) and internal senior leaders to navigate EU and UK obligations, US privacy frameworks, and evolving regulatory expectations, negotiating solutions that preserve relationships and outcomes
  • Lead Bumble’s privacy-related cyber incident and data breach response program end-to-end in close partnership with Information Security—owning readiness and investigation/triage protocols related to privacy, making notification and regulatory reporting decisions across jurisdictions, coordinating regulator engagement, and driving post-incident remediation and lessons learned—serving as the senior escalation point for high-severity matters
  • Own and maintain core GDPR compliance documentation, including Records of Processing Activities (ROPA), Data Protection Impact Assessments (DPIAs), and Lawful Basis assessments and draft and negotiate Data Processing Agreements
  • Partner closely with InfoSec, Product, and Engineering teams to ensure security safeguards, privacy-by-design, and clear roles and responsibilities in incident preparedness
  • Partner closely with the member support function to respond to requests from members for access to or deletion of their data, and assist on (i) regulatory investigations from regulators in the US, UK and EU
  • and (ii) member claims in civil courts, in relation to Bumble’s response to members’ requests
  • Fulltime
Read More
Arrow Right

Senior Director Privacy Counsel

Location
Location
United States , Austin; New York
Salary
Salary:
Not provided
bumble.com Logo
Bumble Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Worked as in-house privacy counsel for a public, consumer technology company with a large global user base
  • Experience leading significant data breach or incident response from detection through regulatory reporting and remediation
  • Experience designing or scaling a global privacy compliance program across multiple jurisdictions (e.g., GDPR, CCPA/CPRA, UK DPA)
  • Implementation of frameworks, tools, or documentation such as ROPA, DPIAs, or training programs
  • Fulltime
Read More
Arrow Right

Radiology Compliance Director

The Radiology Compliance Director is responsible for leading and managing compli...
Location
Location
United States
Salary
Salary:
68.20 - 102.30 USD / Hour
advocatehealth.com Logo
Advocate Health Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Health Care Compliance (CHC), Health Care Privacy Compliance (CHPC), Health Care Privacy and Security (CHPS), Health Care Research Compliance (CHRC) or comparable certification
  • Bachelor's degree in health care administration, medical coding, health information management, clinical practice, clinical research, or related field
  • Typically requires 7 years of experience in a health care compliance/regulatory role within a complex environment
  • Demonstrated ability to lead diverse work teams in a complex matrix management structure
  • Advanced knowledge of federal and multiple state health care regulations related to applicable areas of responsibility
  • Demonstrated ability to manage sensitive and/or complex interactions with physicians, leaders, internal and outside legal counsel and regulatory agencies
  • Knowledge of risk analysis and risk management principles
  • Excellent organizational and prioritization skills, including expertise in leading multiple large projects simultaneously
  • Skills in developing sound proposals and in implementing a comprehensive program
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Direct and monitor compliance for all radiology services, ensuring alignment with CMS, Joint Commission, and imaging-specific standards, including radiation safety and modality accreditation
  • Conduct radiology-specific risk assessments and audits, identify compliance vulnerabilities, and implement corrective actions to reduce organizational risk
  • Lead investigations into compliance concerns related to imaging protocols, billing/coding accuracy, and patient safety
  • analyze root causes and drive process improvements
  • Develop and deliver targeted compliance education for radiology staff and physicians
  • Collaborate with radiology leadership to develop and maintain policies and procedures that support compliance and accreditation for imaging modalities
  • Ensure adherence to radiation protection standards, including ALARA principles, equipment calibration, and staff credentialing, to safeguard patients and team members
  • Directs and monitors the compliance program across Advocate Health within applicable areas of responsibility
  • Directs and conducts compliance investigations and resolution of identified compliance concerns, regulatory violations, and policy violations
  • Reduces organizational risk by directing and conducting risk assessments
What we offer
What we offer
  • Paid Time Off programs
  • Health and welfare benefits such as medical, dental, vision, life, and Short- and Long-Term Disability
  • Flexible Spending Accounts for eligible health care and dependent care expenses
  • Family benefits such as adoption assistance and paid parental leave
  • Defined contribution retirement plans with employer match and other financial wellness programs
  • Educational Assistance Program
  • Premium pay such as shift, on call, and more
  • Incentive pay for select positions
  • Opportunity for annual increases based on performance
  • Fulltime
Read More
Arrow Right