Manager - Data Privacy & Compliance

Job Description

The Manager- Data Privacy and Compliance will be responsible for overseeing the organization s data protection and privacy strategy and its implementation to ensure compliance with all the applicable privacy laws and regulation across the geographies where organization is operating for ex. GDPR, DPDP, CCPA etc. The person will act as a subject matter expert on data protection, privacy and compliance matters ensuring that the company s data processing, storage and handling activities comply with the law, and advising on data privacy risks and issues. Key Responsibilities: Develop and maintain a robust data privacy program that aligns with the global and local privacy law and regulation where we are operating. Monitor compliance with data privacy laws, internal policies and contractual obligations through regular audits and assessments. Serve as the point of contact for data protection authorities and individuals whose data is processed (Employees, customers, etc.). Draft, implement and update the organisation s data protection policies and procedures. Ensure that data privacy policies are integrated into the organisation s overall risk management and compliance framework. Develop and conduct data protection and privacy training program for employees and stakeholders. Promote data privacy awareness and culture within the organisation. Collaborate with IT, Business units, security teams to ensure data security measures are in place and effective. Manage data breach response processes, including notifications and remediation efforts. Stay current with changes in privacy laws and regulations and communicate these changes to the relevant stakeholders. Advise on contractual and legal matters related to data privacy, including data processing agreements. Conduct data privacy impact assessments (DPIAs) for new projects, systems or processes involving personal data. Identify and mitigate data privacy risks within the organisation. Manage and respond to data breaches and data subject access requests (DSARs). Enquire timely reporting of data breaches to regulatory authorities and affected individuals as required. Qualifications and Skills:- Bachelor degree in law, IT, Business Administration or equivalent. A master s degree or professional certification (e.g., CIPP/E, CIPM, CIPT) is preferred. Extensive knowledge of data protection laws, including the DPDPA, GDPR, CCPA and other global privacy laws. Strong Understanding of ISO 27001:2022 and ISO 3100. Minimum of 7 years of experience in data protection, privacy, compliance or a related field. Proven experience in developing and implementing data protection programs. Excellent analytical and problem-solving skills. Exceptional communication and interpersonal skills. Team player and ability to work independently. Why Zenoti Be part of an innovative company that is revolutionizing the wellness and beauty industry. Work with a dynamic and diverse team that values collaboration, creativity, and growth. Opportunity to lead impactful projects and help shape the global success of Zenoti s platform. Attractive compensation. Medical coverage for yourself and your immediate family. Access to regular yoga, meditation, breathwork, and stress management sessions. We also include your family in benefit awareness initiatives. Regular social activities, and opportunities to give back through social work and community initiatives.