EMPLOYEE PRIVACY & DATA PROTECTION PROFESSIONAL (H

As the leading foodservice and support services company, Compass Group USA is known for our great people, great service and our great results. If you’ve been hungry and away from home, chances are you’ve tasted Compass Group’s delicious food and experienced our outstanding service. We have over 284,000 US associates who work in award-winning restaurants, corporate cafes, hospitals, schools, arenas, museums, and more in all 50 states. Our reach is constantly expanding to shape the industry and create new opportunities for innovation. Join the Compass family today! great people. great services. great results. Each and every individual plays a key role in the growth and legacy of our company. We know the next big idea can come from anyone. We encourage developing and attracting expertise that differentiates us as a company as we continue to raise the bar.Job Summary:Compass Group USA is seeking an experienced Privacy Professional to join our Legal & Compliance team. This role will focus on ensuring compliance with applicable US state and federal privacy laws governing the collection, processing, and use of employee/associate personal information. The ideal candidate will have a strong understanding of privacy frameworks and experience working in organizations with diverse industry exposure, and the ability to coordinate across multiple teams.Responsibilities: Regulatory Compliance: Monitor and interpret state privacy and Artificial Intelligence laws (e.g., CCPA, CPRA, VCDPA, and similar) impacting employee personal information. Advise business units on compliance obligations related to personal information collection, processing, and sharing. Help build and maintain strong privacy controls and systems to maintain privacy compliance. Manage the company DSAR process and tooling. Policy Development & Implementation: Draft, review, and maintain privacy policies, notices, and consent mechanisms across websites and mobile applications. Embed privacy-by-design principles into marketing and technology initiatives and applications purchased and created by the company. Risk Management: Conduct Privacy Impact Assessments (PIAs) and maintain Records of Processing Activities (RoPA). Support incident response and breach management in collaboration with IT and cybersecurity teams. Training & Awareness: Deliver privacy training to human resources, talent acquisition, benefits, and other teams, and educate the company around core privacy principles. Promote a culture of compliance across diverse business units. Qualifications: Education & Experience: A bachelor’s from an accredited US college or university in related studies. Minimum 3–5 years of experience advising US entities on topics of privacy, data protection, or similar compliance roles at a company governed by state and federal US privacy laws. Privacy Expertise: Required: Strong knowledge of U.S. state privacy laws. Preferred: Experience with HIPAA compliance. CIPP/US, CIPM, or similar privacy certification.