Senior Vice President, Privacy and Data Protection

About The Position

Requirements

• 15+ years of progressive experience in privacy, data protection, regulatory law, or related fields at a top-tier law firm, multinational organization, or equivalent
• Deep expertise in GDPR and U.S. federal and state privacy laws, with demonstrated experience operating across multiple international jurisdictions.
• Proven experience leading global privacy programs in complex, matrixed, and decentralized organizations.
• Strong executive presence and credibility, with experience advising C-suite leaders on regulatory risk, governance, and compliance matters.
• Strategic, business-oriented judgment, with the ability to balance legal risk, innovation, and commercial imperatives in a creative, artist-centered business.
• Exceptional leadership and collaboration skills, with a track record of influencing senior stakeholders across diverse business units.
• Outstanding communication, analytical, and drafting skills, including the ability to translate complex regulatory issues into clear, actionable guidance for senior leadership.

Nice To Haves

• CIPP certification strongly preferred.

Responsibilities

• Set and execute UMG’s global privacy and data protection vision, aligning privacy governance with corporate strategy, digital initiatives, and evolving regulatory and market expectations.
• Own enterprise-wide privacy risk management, including identification, assessment, mitigation, and escalation of material risks to senior management.
• Serve as the executive point of accountability for privacy compliance across UMG’s global operations, including GDPR, U.S. federal and state laws, and other international data protection regimes.
• Oversee governance of privacy incidents and data breaches, ensuring timely escalation, regulatory notifications, remediation, and post-incident reporting consistent with public-company obligations.
• Direct global privacy audits, monitoring, and assurance activities, ensuring consistent execution across territories, labels, and business units.
• Provide executive oversight of third-party data and privacy risk, including strategic partners, vendors, platforms, and technology providers.
• Track and assess global regulatory developments and enforcement trends, advising executive leadership on business impact, risk exposure, and strategic response.
• Partner closely with technology, product, digital, security, and commercial leadership to embed privacy-by-design and responsible data use into UMG’s products, platforms, and artist-facing services.
• Guide and oversee negotiation of complex data protection and data usage provisions in high-impact commercial agreements, including DPAs, licensing arrangements, and strategic partnerships.
• Build, lead, and mentor a global privacy organization, fostering collaboration across legal, compliance, security, and business teams in a fast-moving, creative environment.
• Champion continuous improvement of policies, controls, and processes, ensuring scalable governance that supports UMG’s global footprint while respecting local regulatory and cultural requirements.

Benefits

• Comprehensive medical, dental, and vision coverage
• Including 100% coverage for out-patient in-network mental health services
• Fertility coverage for eligible medical plan participants
• Wellbeing reimbursements for fitness classes, spa treatments, meal services, travel, and so much more (up to $720/year)
• Student Loan Repayment Assistance and Tuition Reimbursement
• 401(k) with 100% immediate vesting on the first 5% of your contributions, plus an additional UMG contribution
• A variety of ways to prioritize much-needed time away from work including:
• Flexible Paid Time Off (PTO) for exempt employees
• 3-weeks PTO for non-exempt employees
• 2-weeks paid Winter Break
• 10 Company Holidays (including Juneteenth and Wellbeing Day)
• Summer Fridays (between Memorial Day and Labor Day)
• Generous paid parental leave for every type of parent