Privacy Manager

Keywords Studios continues to build world leading capabilities in services that video game and other interactive content creators need. We stand shoulder to shoulder with our clients working as their external partner, providing access to our teams of experts where and when needed.

People that work at Keywords Studios are passionate, talented, committed and resourceful. Human talent is our most valuable resource and, as a business, we thrive on diversity, celebrate uniqueness and work as together in teams, either physically in one of our 70+ facilities across 26 countries around the world or else virtually.

Role Overview

As part of the Global Privacy Office and reporting into the Global Head of Privacy, we are looking for an experienced data protection/privacy professional to support the delivery and maintenance of the Privacy Program. This role will involve the development of policies, processes and standard across Keywords Studios, as well as the day to day management of data protection matters, including data protection impact assessments, privacy by design, data subject rights requests, incident management, vendor assessments and due diligence. We are looking for someone who can work independently and deliver pragmatic, risk-based solutions.

Responsibilities

• Support the implementation and ongoing maintenance of the Global privacy programme.
• Act as a subject matter expert on privacy matters, collaborating with internal stakeholders at all levels to provide guidance and support.
• Develop and maintain privacy policies, standards, and procedures to ensure compliance with applicable data protection laws such as the General Data Protection Regulation (GDPR), US state privacy laws and other relevant global regulations, including countries such as Canada, the Philippines and Brazil.
• Collaborate with information security management to align privacy policies, practices and investigations with the information security framework.
• Work with the legal team to ensure that privacy practices align with legal requirements and mitigate potential legal risks. Conduct privacy impact assessments (PIAs) data protection impact assessments (DPIAs) to identify potential privacy risks and recommend appropriate risk mitigation strategies.
• Undertake due diligence on service providers to ensure their privacy and data protection controls align with our expectation.
• Support the completion of client vendor due diligence activities when Keywords is acting as data processor.
• Undertake Transfer Impact Assessments and implementing safeguards for restricted transfers of personal data.
• Maintain Records of processing activities.
• Define appropriate lawful basis for processing.
• Develop training materials and provide training to employees on privacy matters.
• Support activities around personal data breach management.
• Manage data subject requests and privacy complaints, ensuring timely and appropriate responses.
• Maintain up-to-date knowledge of applicable international privacy laws.

Requirements

• 5+ years of hands-on experience in core areas of privacy and data protection management.
• Proven experience of working independently on Privacy related tasks.
• Ability to understand and consider the operational impact of Privacy advice and recommendations.
• Experience translating complex Privacy topics into simple, easy to understand advice and recommendations.
• Experience in developing policies and processes from scratch.
• Strong experience of data protection by design.
• Excellent presentation, written and oral communication skills.
• Proven experience in the execution of Data Protection Impact Assessments, Legitimate Interest Impact Assessments and Transfer Impact Assessments.

Desired

• Experience in Privacy regulation beyond GDPR.
• Experience in dynamic and fast-paced environments and industries such as gaming, media, entertainment or technology a plus.
• Experience in a technical services or software development environment is desirable.
• Possession of a major privacy certification.
• Understanding of AI in the context of Privacy and Data Protection.
• Excellent stakeholder management skills.
  

Benefits

• Great Place to Work certified for 3 consecutive years
• Remote work set-up
• Global exposure