Data Privacy Specialist
We are seeking a Data Privacy Specialist to support and advance our global data privacy program. This role focuses on ensuring compliance with international data protection regulations, conducting privacy risk assessments, and strengthening data governance practices. The ideal candidate brings a strong understanding of privacy frameworks, excellent analytical skills, and an appreciation for the role of trust and transparency in managing personal data. This position works cross-functionally with IT, Legal, Security, and Operations to align privacy strategies with business and technology developments.
Key Responsibilities:
- Develop, update, and maintain data privacy policies, notices, and internal guidance.
- Support implementation and management of privacy policies, procedures, and documentation to ensure compliance with global privacy regulations (GDPR, CCPA, etc.).
- Monitor organizational data processing activities for compliance with applicable frameworks.
- Lead or assist with privacy impact assessments (PIAs) and risk assessments.
- Partner with IT, Legal, Cybersecurity, and business teams to embed privacy into systems, processes, and projects.
- Manage data subject access requests (DSARs) and other individual rights requests.
- Track and document evolving global data protection laws and best practices.
- Coordinate with external privacy consultants, auditors, and regulatory stakeholders.
- Contribute to training and awareness programs that promote a culture of data privacy.
- Serve as a point of contact for internal teams regarding data privacy issues and escalations.
- Support audits, compliance reviews, and ongoing privacy readiness efforts.
- Perform other related duties as assigned.
Qualifications:
- Bachelor’s degree in Law, Information Technology, or related field.
- Professional certification in data privacy (e.g., CIPP/E, CIPP/US, CIPM) preferred.
- 4+ years of experience in data privacy, compliance, legal, or information governance roles.
- Strong knowledge of global data protection laws (GDPR, CCPA, etc.).
- Experience with privacy management platforms (e.g., Privado, Osano, OneTrust, TrustArc).
- Familiarity with emerging technologies (AI, ML) and their privacy implications.
- Experience handling DSARs, PIAs, and privacy-by-design processes.
- Understanding of IT systems, data flows, and security principles.
- Experience in hospitality, travel, entertainment, or other guest-centric industries is a plus.
- Strong analytical, organizational, and problem-solving skills.
- Excellent written and verbal communication abilities.
- Ability to manage multiple projects and priorities simultaneously.
