Director - Data Privacy & Governance

Role OverviewWe are seeking a Director / Senior Manager – Data Privacy & Governance to support and drive the organization’s global privacy operations and data governance framework.This is a hands-on execution role, responsible for implementing privacy processes, ensuring regulatory compliance, and embedding data governance practices across business functions. The role will work closely with Legal, Technology, and Business teams to operationalize privacy requirements across jurisdictions.Key Responsibilities1. Privacy Operations ManagementManage and execute core privacy processes:Data Subject Rights (DSAR) requestsData Protection Impact Assessments (DPIA)Records of Processing Activities (RoPA)Ensure timely and compliant closure of all privacy workflowsMaintain documentation and audit trails2. Regulatory ComplianceSupport compliance with:GDPRDigital Personal Data Protection Act, 2023HIPAA (as applicable)Assist in implementation of policies, procedures, and controlsMonitor regulatory updates and support internal alignment3. Data Governance ImplementationSupport rollout of frameworks for:Data classificationData retention and deletionData minimizationAssist in maintaining enterprise data inventory and mappingCoordinate with technology teams for implementation4. Healthcare Data Privacy SupportSupport compliant handling of:Patient data / PHIClinical and research datasetsAssist in anonymization and pseudonymization initiativesEnsure adherence to healthcare-specific requirements5. Third-Party Privacy ManagementReview and support execution of:Data Processing Agreements (DPAs)Conduct privacy assessments for vendors and partnersTrack third-party compliance obligations6. Incident & Breach SupportSupport investigation and response to personal data breachesAssist in regulatory notification and documentationCoordinate with Information Security teams7. Stakeholder CoordinationWork with:LegalProduct / EngineeringBusiness teamsProvide practical guidance on privacy requirementsSupport privacy-by-design implementation8. Training & AwarenessSupport development and delivery of privacy training programsPromote awareness of responsible data handling practices9. Emerging Areas & Responsible Data UseSupport initiatives related to responsible data useAssist in review of high-risk data processing activitiesContribute to evolving governance practicesRole BoundariesIn ScopePrivacy operations (DSAR, DPIA, RoPA)Regulatory compliance executionData governance implementationOut of ScopeInformation Security / Cybersecurity operationsIT systems or infrastructure ownershipAI model developmentCandidate ProfileExperience9–12 years of experience in:Data privacy / data protectionCompliance / risk / legal operationsHands-on experience in privacy operations is mandatoryCore ExpertiseWorking knowledge of:GDPRDigital Personal Data Protection Act, 2023Exposure to:HIPAA (preferred)Practical experience with:DPIA, DSAR, RoPAData lifecycle managementPreferred BackgroundIT services / consulting / BFSI / healthcareExperience in multinational or regulated environmentsCertifications (Preferred)CIPP/E or CIPP/USCIPMDPO certification (good to have)Key SkillsStrong execution and attention to detailAbility to translate policies into processesStakeholder coordination across functionsProblem-solving and pragmatic approachSuccess MetricsHere is a simplified, clean, and non-duplicative version of Success Metrics — easy to track and use for performance:DSARs and DPIAs completed within defined timelines RoPA maintained with high accuracy and coverage Data classification and retention frameworks implemented Audit readiness maintained with no major findings Privacy incidents reduced and managed effectively Breach responses and notifications completed on time Privacy-by-design applied to all new projects Strong adoption of privacy practices across teams Organization-wide privacy training completed Key vendors covered under DPAs and privacy assessmentsCareer PathThis role provides a pathway to:Head – Privacy & Data GovernanceData Protection Officer (DPO)Regional Privacy LeadSummaryThis role is designed for a strong privacy operator who can:Execute privacy processes at scaleSupport global regulatory complianceDrive implementation of data governance frameworksWork cross-functionally to embed privacy into business operations

Apply Now