Data Privacy Manager

Summary

Join dLocal, a global payments company, and become a key member of our team focused on data protection in Asia. You will play a crucial role in ensuring compliance with regional data protection regulations. This position requires in-depth knowledge of Asian data privacy laws and experience working as a Data Protection Officer. You will map data protection requirements, develop policies, advise on privacy-friendly product development, and handle data breach investigations. dLocal offers a flexible, remote-first work culture with various benefits. This is an opportunity to build an international career and make a significant impact.

Requirements

• Candidate must be knowledgeable of the Philippines' Data Privacy Act of 2012
• Previous experience servicing as a Data Protection Officer in any Asian country (preferably Philippines)
• Keen understanding of the changing landscape of Asian privacy laws, regulations, and guidance
• IAPP privacy certification (CIPP/E or CIPM) required (or proven deep knowledge of GDPR)

Responsibilities

• Map out data protection requirements across Asia to ensure a clear understanding of the regulatory obligations in the Asian countries where Dlocal is present and/or plans to expand
• Ensure compliance with the data protection requirements across Asia, which may require to lead data protection registrations and/or to service as a Data Protection Officer
• Develop, review and update relevant data protection policies and privacy notices for the Asian region
• Assist in the development and/or improvement of data processing registers both locally and globally
• Advise the Global Data Protection Officer on when a DPIA is required under Asian data protection laws, assisting the DPO team with procedural and substantive aspects of DPIAs
• Ensure Dlocal’s compliance with standards set out across the Asian region in relation to data transfers and lawful processing of personal data
• Liaise with the Product team to advise on building privacy-friendly products, services and processes by embedding data protection throughout every stage of development (privacy by design) considering requirements imposed in the Asian region
• Assist in the investigations and disclosures of data breaches and security incidents to ensure compliance with regulatory and data protection requirements across Asia
• Assist the Legal team in reviewing and negotiating Data Processing Agreements where Asian data protection laws are under the scope of the agreement
• Develop privacy and security awareness training and programs to support data protection requirements in the Asian region
• Support the creation and maintenance of data retention schedules covering categories of data which fall under the scope of data protection laws in Asia
• Act as a contact point for data subject requests falling under the scope of Asian data protection laws
• Act as a contract point for internal and external auditors in the assessment of compliance with data protection laws across any Asian country falling under the scope of the audit

Preferred Qualifications

• Knowledge of the ISO 27001 framework is a plus
• Pragmatic personality (action-oriented)
• Ability to deal with ambiguity and to learn on the Fly
• Customer focus
• Analytical skills, including the ability to present ideas clearly to others and to identify and escalate issues of concern to management, as appropriate
• Ability to work in a pressured environment while prioritising appropriately competing objectives
• Supportive and reliable team member
• Self-motivated
• Organized and diligent

Benefits

Flexible, remote-first dynamic culture with travel, health, and learning benefits, among others