Overview
The Data Privacy Consultant will join the Privacy & Compliance team on a contract basis, functioning at the intersection of privacy and technology. They will be responsible for translating data protection principles into actionable technical controls, ensuring compliance throughout the engineering workflows. This role requires extensive collaboration across various teams, including Engineering and Legal, to implement privacy-by-design principles effectively.
Responsibilities
- Translate privacy policies and legal requirements into actionable, testable specifications for engineering workflows.
- Conduct technical impact assessments on tracking technologies and data flows to support Privacy Impact Assessments (PIAs).
- Audit technical designs, SDKs, and vendor integrations for compliance with privacy regulations.
- Identify scenarios necessitating Legal or Data Protection consultation.
- Convert legal language into clear, testable technical requirements and assurance logic.
- Maintain and evolve the Privacy Assurance Toolkit, including automated tests and checklists.
- Drive collaboration among Legal, Compliance, Security, Product, Architecture, and Engineering teams.
Requirements
- Strong technical knowledge of web and mobile environments, including SDKs, event streaming, and encryption.
- Demonstrated ability to write non-functional requirements (NFRs) and Behaviour-Driven Development (BDD) specifications.
- Deep understanding of GDPR, PECR, and relevant regulatory guidance.
- Experience in leading or contributing to Privacy Impact Assessments (PIAs) with both legal and technical perspectives.
- Proven capability in privacy audit and assurance with critical assessment skills.
- Skilled in managing relationships with technical and non-technical stakeholders.