AIML- Compliance & Policies Lead, Evaluation

Apple•New York, NY

About The Position

The AIML Privacy and Regulatory Compliance (PaRC) team at Apple leads privacy and regulatory compliance across AIML, collaborating with Privacy Engineering, Privacy Legal, Competition Legal, Government Affairs, and various regulatory groups. This team is crucial in shaping the direction of software features, models, and platforms, balancing product success with Apple's high customer expectations for quality and privacy. PaRC spearheads readiness efforts for new regulatory and compliance requirements within AIML, integrating them into existing infrastructure and processes to ensure ongoing adherence. Additionally, the team develops and advocates for tools, monitoring programs, and practices that enhance AIML's overall privacy narrative. The PaRC team is seeking a Compliance & Policies Lead with extensive knowledge of privacy regulations and standards, compliance programs, corporate policies, and a keen interest in technology. In this role, the lead will collaborate with engineering, data science, legal, and privacy teams across Apple to drive AIML's privacy and compliance initiatives. Key responsibilities include developing new AIML policies, establishing controls for legal and internal standard adherence, and partnering with the Compliance Data Science team for monitoring, dashboards, and audits. The lead will act as the primary authority for privacy and compliance requirements within AIML, working directly with engineers, data scientists, EPMs, and lawyers. As a subject matter expert, the focus will be on embedding these requirements into infrastructure and tooling, codifying AIML data practices (usage, retention, collection, and governance) into internal policies, building monitoring controls, and ensuring new features meet compliance from inception. Close collaboration with EPM and cross-functional teams will be essential to update processes for built-in compliance, while partnering with legal teams to prioritize requirements, controls, and audit targets. This role supports numerous critical, ongoing compliance requirements and is ideal for a detail-oriented problem solver with strong communication skills who thrives in collaborative environments, can manage both detailed and strategic perspectives, and works effectively with diverse cross-functional partners.

Requirements

12+ years of experience in privacy, compliance, and/or data governance.
Proven ability to lead large, complex, and ambiguous cross-functional technical programs.
Strong understanding of privacy, competition, and AI regulations, including CCPA, GDPR, DMA, and the EU AI Act.
Experience developing and leading compliance assessments, audits, and risk assessments.
B.S. degree or higher in Engineering, Privacy, Policy, or a related field.

Nice To Haves

Exceptional written and presentation skills, with the ability to communicate clearly to both engineers and lawyers, up to and including Senior Vice Presidents.
Experience in compliance, public policy, data privacy, or machine learning, with a track record of bridging technical and legal perspectives.
Demonstrated ability to ramp up quickly on new technologies and navigate a fast-paced, dynamic environment.
Strong relationship-building skills with the ability to work effectively across functions, levels, and disciplines.
Proven track record of managing ambiguity and complexity while sustaining compliance at scale.

Responsibilities

Collaborate with engineering, data science, legal, and privacy teams across Apple to lead AIML's privacy and compliance efforts.
Drive the development of new AIML policies.
Establish controls to ensure adherence to laws, regulations, and internal standards.
Partner with the Compliance Data Science team on monitoring, dashboards, and audits.
Serve as the authoritative source for privacy and compliance requirements across Apple's AIML efforts.
Embed AIML's policies and commitments directly into infrastructure and tooling.
Codify AIML data practices (usage, retention, collection, and governance) into internal policies.
Build monitoring controls with data science partners.
Help ensure new features meet requirements from day one.
Collaborate closely with EPM and cross-functional teams to update processes that bake compliance in by default.
Partner with legal teams to prioritize requirements, controls, and audit targets.
Support dozens of critical, ongoing compliance requirements.