We create honest financial products that improve lives.
Manager, Privacy Compliance
Location
California + 4 moreAll locations: California | Connecticut | New Jersey | New York | Washington
Posted
1 day ago
Salary
$165K - $225K / year
Seniority
Senior
Job Description
Manager, Privacy Compliance
Affirm
• Support oversight of the existing Privacy compliance program across jurisdictions, with primary focus on U.S. requirements and alignment to global privacy obligations, where required suggest improvements. • Translate Legal guidance and regulatory requirements into policies, standards, and control expectations, ensuring clear articulation of compliance requirements for first-line teams. • Provide oversight and maintain existing governance frameworks and standards for core privacy program areas, including: • Data subject rights (DSAR) processes and SLAs • Data protection impact assessment (DPIA) governance and documentation standards • Consent and preference management expectations • Data retention and deletion requirements • Partner with Product and Engineering to advise on and review the design and implementation of privacy controls, ensuring alignment to regulatory expectations while maintaining second-line independence. • Provide independent oversight and effective challenge of first-line privacy control environments, including review of control design, identification of gaps, and tracking of remediation actions. • Oversee privacy incident and breach response processes from a governance perspective, including review of escalation, documentation, and outcomes, in coordination with Legal on notification requirements. • Maintain privacy risk registers and support risk assessment processes, including DPIA oversight, issue identification, and remediation tracking. • Monitor adherence to privacy requirements and control expectations, including data subject rights processes, consent management, and regulatory obligations, and escalate issues where gaps are identified. • Support audits, regulatory examinations, and bank partner reviews by coordinating second-line input, reviewing materials, and tracking remediation actions. • Produce and contribute to privacy monitoring and governance reporting, including metrics and risk summaries for management and risk committees (e.g., RMC, CRMC). • Partner with third-party risk functions to provide second-line oversight of privacy considerations in vendor and merchant onboarding and monitoring processes. • Collaborate with international compliance and DPO functions to support consistent application of privacy governance frameworks, without assuming DPO accountability. • Support privacy training and awareness by defining requirements and reviewing program effectiveness in coordination with first-line execution teams.
Job Requirements
- 6–10+ years of experience in privacy compliance, regulatory compliance, risk management, or a related control function, preferably within financial services, fintech, or a regulated environment.
- Strong understanding of U.S. privacy laws (e.g., CCPA/CPRA, GLBA) and familiarity with international regimes (e.g., GDPR, UK GDPR).
- Experience operating within a second-line of defense model, including governance, oversight, and independent challenge of first-line control environments.
- Demonstrated ability to translate regulatory requirements into policies, standards, and control expectations (not direct control ownership or legal interpretation).
- Experience reviewing control design and effectiveness, including participation in audits, regulatory exams, or control testing programs.
- Strong cross-functional partnership skills, with the ability to influence Product, Engineering, and Operations without direct ownership.
- Sound judgment and ability to escalate and manage regulatory risk appropriately.
- Bachelor’s degree or equivalent practical experience; relevant certifications (e.g., CIPP, CIPM) are a plus.
Benefits
- Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents
- Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
- Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge
- ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount
Related Guides
Related Categories
Related Job Pages
More Compliance Jobs
Role Description To show visible leadership and take personal accountability for health, safety, security and the environment in accordance with Calor GB’s Health, Safety, Security and Environment Policy, HS-Q-01 within their geographical area of responsibility. This role acts as the eyes and ears of the Customer Engineering Leadership Team. - Ensure field teams carry out work safely and to the required technical standards via live in-field observations and post job assessments. - Provide SME support across all work types, ensuring compliance with Calor, LGUK, UKAS and BS/EN Standards. - Support the wider Calor community in Sales, Marketing, or Customer Service queries including incident investigation, install specification, and marketing event support. - Maintain and communicate changes in Legislation, Codes of Practice, Calor standards, industry best practice, and new products. - Support and coach colleagues, particularly during the onboarding and training of New-Entrants, New Starters, and office staff. - Carry out assessments with recently trained engineers in the field as part of their course completion and final sign-off. - Feed back concerns and gaps highlighted in the field to the training and technical teams for continuous improvement. - Conduct consumer incident investigations, determining causes, highlighting trends, and liaising with Insurance and legal partners. - Support the Customer Engineering training team in developing, maintaining, and briefing out training content as required. Qualifications - Wide range of experience within the Liquid Gas industry. - Current ACS Certification. - Experience and knowledge to work/advise both within and outside of processes and procedures in a safe and considered way. - Experience with a wide range of LPG equipment. - Experience of working with multi-disciplined teams across different functions within Calor. Requirements - Current MCA Inspector or ability to meet the Inspection Body criteria. - Hold a current Auditing qualification. - Hold a current Vocational Assessors qualification. - Hold a current SHEA Gas qualification. - Hold IOSH Managing Safely qualification. - Hold a WAH for Managers qualification. - Understand MCA Inspection activity & Inspection Body requirements. - Experience of working with External bodies such as UKAS or Gas-Safe. Key Responsibilities - Show visible leadership and take personal accountability for health, safety, security and the environment in accordance with Calor GB’s Health, Safety, Security and Environment Policy, HS-Q-01. - Monitor the application of Calor and Industry specifications, procedures, and SSOW using Audit, Assessment, and Observation. - Support and coach colleagues, aiding their development by providing feedback and guidance directly. - Support the creation, maintenance, delivery, and in-field assessment of training. - Provide ongoing updates to the field on new equipment, new processes, and companywide initiatives. - Support the wider Calor teams; Sales, Marketing, HSSE, Tank Refurb, and others with SME support. - Carry out assessments with recently trained engineers in the field as part of their course completion and sign-off. - Provide ownership and follow up on actions raised through in-field Audit, Assessment, and Observations. - Conduct consumer incident investigations and follow up, determining causes and highlighting trends. - Support the Customer Engineering training team in developing, maintaining, and briefing out training content as required.
• Prepare and ensure timely submission of regulatory reports for Mashreq UAE. • Compute and report key prudential metrics, including Capital Adequacy Ratio (CAR). • Compile and submit regulatory returns for Mashreq subsidiaries to CBUAE.
Compliance Specialist
Arizona Department of AdministrationThe Attorney General's Office offers a comprehensive benefits package. For a complete list of benefits provided by The State of Arizona, please visit our benefits page.
Role Description The Compliance Specialist for the Department of Real Estate is responsible for conducting investigations and audits into alleged violations of state real estate laws, regulations, and professional standards. This role involves gathering and analyzing evidence, interviewing witnesses, preparing detailed reports, and testifying on behalf of the agency during administrative or judicial proceedings. The ideal candidate has a solid understanding of real estate practices, compliance, and regulatory frameworks and is willing to perform any task necessary to support the department's mission. Key Responsibilities - Audits, Investigation, and Compliance: - Initiate and Complete Audits on Entities regulated by the Department to include Trust Compliance Reviews, Spot checks for compliance, and Full Audits of all records. - Conduct thorough investigations of complaints and potential violations of real estate laws, including fraud, misconduct, unlicensed activity, and non-compliance with licensing standards. - Collect, review, and analyze relevant documentation, such as contracts, financial records, and correspondence. - Field Work: - Interview licensees, witnesses, complainants, and other stakeholders to obtain statements and insights regarding cases. - Documentation and Reporting: - Prepare comprehensive investigative reports outlining findings, evidence, and recommended actions. - Maintain accurate records in accordance with departmental policies and legal standards. - Testimony and Representation: - Testify on behalf of the agency in administrative hearings, court cases, or other legal proceedings, presenting findings clearly and accurately. - Collaborate with legal teams to ensure proper presentation of evidence and adherence to legal protocols. - Collaboration and Enforcement: - Work closely with legal teams, contracted companies, and other regulatory agencies to support case preparation and enforcement proceedings. - Assist in preparing cases for administrative hearings or court actions by providing testimony and expert analysis. - General Department Support: - Perform any task as assigned by department leadership to support the mission and goals of the department, including administrative duties, outreach activities, and special projects. Qualifications - Thorough understanding of state real estate laws, licensing requirements, and industry standards. A.R.S. Title 32 Chapter 20 and A.A.C. Title 4 Chapter 28. - Strong analytical skills with the ability to interpret contracts, legal documents, and financial statements. - Ability to manage multiple investigations simultaneously while meeting deadlines. - Excellent written and verbal communication skills. Requirements - Real Estate license (preferred but not required). - Employees who drive on state business are subject to driver license record checks, required to maintain acceptable driving records and complete any required driver training (see Arizona Administrative Code R2-10-207.11). - Requires possession of and ability to retain a current, valid state-issued driver license appropriate to the assignment. Benefits - Optional employee benefits include short-term disability insurance, deferred compensation plans, and supplemental life insurance. - Life insurance and long-term disability insurance. - Vacation plus 10 paid holidays per year. - Health and dental insurance. - Retirement plan. - Sick leave.
• Conduct pre-publication review of TPA and client marketing materials against scheme brand standards and programme rules. • Run periodic post-publication sweeps across digital and physical marketing channels to identify unapproved, outdated, or non-compliant materials, and log findings for remediation tracking. • Maintain the live TPA and PIF registries, including tracking submission statuses, modifications, renewal dates, and ongoing requirements set by the schemes. • Monitor TPA and PIF submission statuses in the registry and follow up on outstanding items with internal stakeholders and, where directed, with the schemes. • Triage incoming scheme queries and flagged cases (e.g. marketing flags, registry discrepancies), drafting responses and action plans. • Support periodic and annual client reviews: compile client data packs, run first-pass checks against the client review checklist, and draft review summaries with recommended actions. • Maintain Reap's scheme compliance tracker and document management discipline across marketing, TPA, and PIF records — version control, retention, and audit-readiness. • Monitor Visa Business News (and other scheme bulletins) for new releases, logging items and flagging those with potential operational impact for compliance officer assessment. • Work closely with the global Scheme Compliance team to improve processes, share learnings, and collaborate on ways of working across jurisdictions.


