Role Description Toast, Inc. seeks a strategic, commercially oriented, forward-thinking Director to lead the Compliance organization supporting the Fintech business. - Compliance leader managing compliance team supporting Fintech products. - Oversee the development and maintenance of product-specific compliance management programs within Toast's Fintech Line of Business. - Direct the Fintech Compliance team on establishing best-in-class compliance management systems, mitigation of key compliance risks related to in-scope products, and the remediation of process and control gaps. - Serve as a compliance thought partner to Fintech business stakeholders in the design and implementation of products/product enhancements. - Guide Fintech Compliance team in product reviews to ensure regulatory compliance requirements are met. - Serve as compliance sponsor on compliance committees. - Escalate key compliance risks and issues to Chief Compliance Officer and governing bodies, such as the Enterprise Risk and Compliance Committee. - Review results from compliance testing programs to identify themes or trends in findings and gaps. - Mature and enhance Fintech compliance program and/or framework to address identified issues. - Ensure product-specific regulatory changes are monitored and assessed, and communicated to business partners in a timely manner. - Oversee partner relationships and ensure obligations are met, including timely and accurate reporting and successful completion of partner reviews and required testing. - Serve as an escalation point for concerns and issues raised by key partner contacts. - Maintain state money transmitter licenses and compliance with associated requirements. Qualifications - Bachelor’s Degree required and CRCM preferred. - Strong knowledge of financial laws and regulations, including: - CFPB regulations (most specifically Reg B, Reg E, Reg P, and Reg Z) - Federal and state consumer protection laws (most specifically UDA(A)P, CAN-SPAM, and TCPA) - Other laws and industry best practices related to commercial and consumer credit, prepaid debit cards, and electronic funds transactions - Money transmitter laws, and card association and payment network rules - Direct experience leading compliance programs for financial products and services, specifically payment processing, money transmission, and banking products. - Typically requires 15+ years of related experience with a Bachelor’s degree, and 10+ years of experience in a compliance, risk, or audit role at a financial institution. - Experience maintaining fintech-oriented frameworks, bank partnerships, and third-party vendor programs. - Familiarity with operational processes and regulations related to banking products. - Ability to work well with ambiguity and synthesize large amounts of complex information. Requirements - CAMS (Nice-to-Have Skills) Benefits - Competitive compensation and benefits programs. - Flexibility to meet Toasters’ changing needs.

Role Description This position investigates and analyzes potential breaches, privacy incidents, inadvertent disclosures, and manages and compiles documentation which occur in the Out of Network Department. This position also provides education and training to the Out of Network team members to promote and ensure compliance with relevant privacy regulations. This position is responsible for ensuring compliance with the Health Insurance Portability and Accountability Act (HIPAA) and other federal, state, or other relevant international privacy regulations. Qualifications - High School Diploma or GED required; Associates Degree preferred. - Minimum 2 years of experience in privacy, compliance, in a healthcare setting such as negotiations, claim processing, medical coding, provider billing, customer service, worker's compensation or collection agency. - Knowledge and understanding of negotiation process. - Strong communication (written, verbal, and listening), analytical, organizational, prioritization, technical, etiquette, and interpersonal skills. - Ability to use software and hardware peripherals related to job responsibilities including MS Office Suites with preferred proficiency with Word, Excel, and other database software. - Ability to be flexible in quickly shifting priorities and keeping up with changes across multiple tasks in a fast-paced environment while maintaining a positive and cooperative demeanor. - Ability to demonstrate strong technical skills. - Ability to identify issues and escalate for course of action for resolution. - Ability to elicit trust and credibility with all levels of the organization. - Ability to adjust/alter schedule to meet deadlines. - Ability to work independently and handle confidential information. - Must be able to work in a standard office environment which requires sitting and viewing monitor(s) for extended periods of time, operating standard office equipment such as, but not limited to, a keyboard, copier and telephone. Requirements - Investigates and evaluates reported privacy incidents which occur in the Out of Network Department (OON) to determine if they are an inadvertent disclosure, if the incident(s) constitute a reportable breach. - Investigates inappropriate disclosures or privacy breaches of PHI ensuring compliance with reporting timeline guidelines. - Review and approve outgoing and incoming correspondence to providers ensuring complete accuracy. - Research systems and database for historical performance and outcomes to provide analytics. - Maintain reports that will improve quality and improve the management of workflow. - Reports all incidents to Legal Analyst, Privacy for determination of whether an incident requires notification to clients or other regulatory bodies, such as HHS Office for Civil Rights. - Responsible for compiling data and tracking of all investigated reported privacy incidents to report on a quarterly basis. - Responsible for the review, maintenance and updates to existing agreements in the system. - Assist with special projects as assigned in conjunction with daily workload; prioritizing and shifting focus as needed. - Recommend system and operation changes to improve efficiency of workflow, quality, and mitigate risk of future inappropriate disclosures or privacy breaches within the OON Department. - Collaborate, coordinate, and communicate across disciplines and departments. - Ensure compliance with HIPAA regulations and requirements. - Demonstrate Company’s Core Competencies and values held within. - This role is considered to be a High Risk Role due to exposure of PHI sensitive data. Benefits - Medical (PPO & HDHP), dental and vision coverage. - Pre-tax Savings Account (FSA & HSA). - Life & Disability Insurance. - Paid Parental Leave. - 401(k) company match. - Employee Stock Purchase Plan. - Generous Paid Time Off -- accrued based on years of service. - 10 paid company holidays. - Tuition reimbursement. - Employee Assistance Program. - Sick time benefits -- for eligible employees, one hour of sick time for every 30 hours worked, up to a maximum accrual of 40 hours per calendar year, unless the laws of the state in which the employee is located provide for more generous sick time benefits.

We are in search for a Compliance Specialist. Compliance works to ensure controls and safeguards are in place to promote adherence to applicable federal and state laws, assess risks to the organization, and maintain the security and privacy of patient and customer data. DUTIES AND RESPONSIBILITIES: - Assists the Compliance Manager with performing internal reviews, research and/or audits to verify compliance with government laws/regulations, client requirements, accreditations/certifications, audit frameworks, and/or organizational policies/procedures. - Documents findings and organizes data for identification of potential risk areas. - Stays informed of applicable rule and regulation changes in the healthcare and pharmaceutical industries. - Assists in the day-to-day operations of the Document Management System (DMS) and Learning Management System (LMS). - Coordinates with appropriate departments and/or cross-functional teams to ensure all applicable documents are reviewed and revised within the specified timeframes. - Has attention to detail, organization skills, excellent proofreading skills, prompt response to action items, and the ability to handle change. - Performs document control functions, including tracking, processing, review, formatting, distribution, and archiving of documents. - Evaluate document organization, proofread, and provide additional quality checks before document finalization. - Assists the Compliance Manager in the review and management of third-party audits. - Verifies compliance with insurer rules, Medicare, Medicaid, HIPAA, and other applicable regulations. - Assists in Incident Management and CAPA process. - Assists Compliance Manager in conducting enterprise-wide Risk Assessment. - Receives, investigates, and resolves compliance and/or privacy related complaints or concerns. - Maintains Compliance & Privacy logs as required. - Assists the Compliance Manager in training efforts and initiatives, including preparation of materials and presenting training through a variety of methods - Performs other related duties as assigned by management.

We are in search for a Compliance Specialist. Compliance works to ensure controls and safeguards are in place to promote adherence to applicable federal and state laws, assess risks to the organization, and maintain the security and privacy of patient and customer data. DUTIES AND RESPONSIBILITIES: - Assists the Compliance Manager with performing internal reviews, research and/or audits to verify compliance with government laws/regulations, client requirements, accreditations/certifications, audit frameworks, and/or organizational policies/procedures. - Documents findings and organizes data for identification of potential risk areas. - Stays informed of applicable rule and regulation changes in the healthcare and pharmaceutical industries. - Assists in the day-to-day operations of the Document Management System (DMS) and Learning Management System (LMS). - Coordinates with appropriate departments and/or cross-functional teams to ensure all applicable documents are reviewed and revised within the specified timeframes. - Has attention to detail, organization skills, excellent proofreading skills, prompt response to action items, and the ability to handle change. - Performs document control functions, including tracking, processing, review, formatting, distribution, and archiving of documents. - Evaluate document organization, proofread, and provide additional quality checks before document finalization. - Assists the Compliance Manager in the review and management of third-party audits. - Verifies compliance with insurer rules, Medicare, Medicaid, HIPAA, and other applicable regulations. - Assists in Incident Management and CAPA process. - Assists Compliance Manager in conducting enterprise-wide Risk Assessment. - Receives, investigates, and resolves compliance and/or privacy related complaints or concerns. - Maintains Compliance & Privacy logs as required. - Assists the Compliance Manager in training efforts and initiatives, including preparation of materials and presenting training through a variety of methods - Performs other related duties as assigned by management.