Data Privacy Specialist, India

Job Responsibilities

1. DPIA Execution
   1. Conduct first-level reviews of Data Protection Impact Assessments (DPIAs) for new systems, projects, and vendors.
   2. Document risks and remediation actions, escalating complex cases to the Manager or Counsel.
2. Data Mapping & Records
   1. Maintain and update Records of Processing Activities (RoPAs) and data flow maps.
   2. Support the development of data retention schedules and ensure ongoing compliance.
3. Vendor Due Diligence
   1. Perform third-party due diligence checks, maintain a vendor register, and ensure data protection clauses are implemented in contracts.
   2. Monitor ongoing vendor compliance and escalate concerns to the Manager.
4. Compliance Monitoring
   1. Support audits and testing of data protection controls.
   2. Track completion of privacy training and assist with awareness initiatives.
   3. Monitor and record data subject rights requests.
5. Incident Support
   1. Assist in investigating suspected breaches by collecting facts, timelines, and documentation.
   2. Draft initial incident reports for review by the Manager/Counsel.
6. Team & Stakeholder Support
   1. Work collaboratively with HR, ISD, Finance, and business teams on operational compliance tasks.

Job Requirements

1. Bachelor's degree in Law, Business, IT, or a related field (or equivalent practical experience).
2. At least 5 years’ experience in data protection, compliance, or risk roles.
3. Familiarity with international frameworks (GDPR, PDPA, PIPL) desirable.
4. IAPP certification (CIPP/E, CIPM) or local equivalent an advantage.
5. Strong organisational skills, attention to detail, and ability to manage high transaction volumes.