Global Privacy Associate

What You'll Be Working On (Duties include but are not limited to):

• Support the Privacy team with day-to-day privacy operations, including documentation, tracking, and compliance recordkeeping 
• Assist in drafting and updating data protection documentation, including DPIAs, TIA checklists, RoPA entries, vendor assessments, Data Subject Action Requests, and consent logs.  
• Help respond to privacy-related RFPs, RFIs, customer audits, and due diligence questionnaires 
• Support documentation and intake workflows for data subject rights (DSAR) requests, including logging, tracking, and follow-up 
• Assist in reviewing vendor privacy and security documentation, including DPAs, subprocessor lists, and TOMs 
• Maintain and update internal privacy trackers, tooling, and repositories (e.g., RoPA spreadsheets, intake forms, DPIA logs) 
• Assist in investigating privacy-related Quality Incidents (QIs) in collaboration with the DPO and QA team, including documentation within the QMS, root cause analysis, and follow-up actions 
• Collaborate cross-functionally with legal, security, IT, clinical, and operational stakeholders to ensure privacy requirements are met. 

Physical and Travel Requirements:

• This is a remote position with less than 10% travel requirements. Occasional planned travel may be required as part of the role. 

What You Bring:

• Role Requirements:
• Bachelor’s degree and 2-3+ years’ experience implementing and advising on a global privacy compliance program. 
• 2+ years’ experience as a privacy advisor in the healthcare / life sciences industry, strong preference for experience in healthcare, clinical research and/or pharmaceutical sector.  
• Practical experience interpreting and applying international privacy laws and regulations. 


• Knowledge, Skills and Abilities:
• Strong knowledge of global data protection and artificial intelligence laws and regulatory developments, including but not limited to familiarity with US, Canadian, and European data protection standards. 
• Knowledge of privacy and security regulations relevant to health data and clinical research, including but not limited to HIPAA. 
• Conversant in data security standards and risk management. 
• Ability to explain privacy principles in a crisp, clear way that is easy for non-experts to understand and apply. 
• Practical knowledge and experience interpreting privacy rules into pragmatic and actionable controls.   
• Positive, “how can I help?” mindset and self-driven commitment to excellent quality standards 
• Ability to track and remain current on all developments in relevant law and regulation.  

Certifications/Licenses, Education, and Experience:

• CIPP certification(s) strongly preferred.

Benefits (US Full-Time Employees Only)

• Paid Time Off (PTO) and Company Paid Holidays
• 100% Employer paid medical, dental, and vision insurance plan options
• Health Savings Account and Flexible Spending Accounts
• Bi-weekly HSA employer contribution
• Company paid Short-Term Disability and Long-Term Disability
• 401(k) Retirement Plan, with Company Match