Privacy Consultant

About The Position

Requirements

• Bachelor’s degree or equivalent combination of education and experience.
• 3-4 years of similar experience in privacy or compliance and risk management, ideally in a Software as a Service (SaaS) organization; experience at the intersection of privacy and AI is strongly preferred but not required.
• Knowledge of US and International data protection regulations and privacy frameworks (e.g., GDPR, CCPA, LGPD, PIPEDA, and others); and applicable industry standards, e.g. DMA guidance.
• Be analytical and assess situations and complex problems quickly in order to make or support privacy decisions.
• You must be a self-motivated team player with the ability to drive projects, identify and support the resolution of legal and business issues, and earn the confidence and cooperation of your colleagues.
• Excellent organization skills, demonstrated sense of responsibility, and results-oriented.
• Work independently; be effective in a fast-paced environment.
• Adapt to rapidly changing business processes and work efficiently under tight deadlines.
• Strong focus on the ability to interact with people at all levels, including executive management.
• Proficient with privacy management technology such as OneTrust.

Nice To Haves

• Certification(s) preferred: CIPP/E/T/US, or similar relevant technical and/or industry certifications in a privacy-related curriculum.
• experience at the intersection of privacy and AI is strongly preferred but not required.

Responsibilities

• Maintain relationships with internal stakeholders and provide advice and communications to ensure privacy risk issues are identified, understood, and effectively managed
• Build awareness of the strategic value of privacy during interactions with stakeholders and promote strong privacy practices. Stay abreast of the privacy landscape, including AI-specific regulations, standards, and industry frameworks and codes of conduct
• Support assessments of the impact on business, and disseminate relevant information to senior leadership and other internal teams
• Assist legal and compliance groups with drafting and reviewing data protection terms and conditions in vendor agreements
• Work with AI product management, marketing, HR, engineering, and security personnel during product development to ensure that Validity’s products and services are in compliance with applicable privacy and data protection requirements
• Manage Validity’s Privacy Impact Assessments (PIA), Data Protection Impact Assessments (DPIA), as well as renewal/onboarding assessments with the Vendor Management team
• Work with internal teams on documenting and maintaining a personal data inventory and Validity’s record of processing activities
• Monitor internal AI/privacy compliance against privacy policies and standards by conducting internal audits and risk assessments
• Provide assistance to external and/or internal auditors in compliance reviews (ISO27701)
• Manage response to suspected privacy incidents and data breaches
• Respond to questions and issues raised by clients, partners, and consumers (DSARs)
• Work cross-functionally to ensure Validity’s external privacy notices, registrations and certifications stay accurate and current