Privacy Analyst

Summary

Join Artera's Legal team as a Privacy Analyst and play a crucial role in shaping the company's privacy policies and practices. You will collaborate with various teams to ensure compliance with global privacy regulations, including GDPR, HIPAA, and HITECH. Responsibilities include drafting and updating privacy policies, conducting contract reviews, contributing to Artera's AI policy framework, and managing privacy tools. This role requires 4+ years of experience in a related field, a strong understanding of healthcare privacy regulations, and proficiency with privacy management tools. The position offers a competitive salary, equity, and a variety of benefits, including full health benefits, flexible spending accounts, paid time off, and career development opportunities. While based in Denver, the role is open to candidates in other Artera hiring hubs.

Requirements

• 4+ years of experience in privacy, compliance, or a related field
• Bachelor's degree in Information Security, Legal Studies, Public Policy, or Business Administration preferred; additional experience in lieu of a degree is also accepted
• Strong understanding of U.S. healthcare privacy regulations (HIPAA, HITECH), with working knowledge of global frameworks such as GDPR
• Experience supporting data privacy and security audits; familiarity with frameworks like HITRUST, SOC 2, or ISO 27001
• Proficient with privacy management tools (e.g., OneTrust or similar)
• Excellent project and time management skills, with the ability to manage multiple priorities

Responsibilities

• Partner with Legal, Information Security, Product, and other teams to ensure compliance with global privacy regulations (e.g., GDPR, HIPAA, HITECH)
• Draft, update, and maintain privacy policies, internal documentation, and public-facing language (e.g., website legal landing page, AI Q&A, cookie disclosures)
• Support contract reviews and negotiations, including Business Associate Agreements (BAAs) and Data Protection Agreements (DPAs)
• Shape and contribute to Artera’s AI and machine learning policy framework
• Conduct and maintain cookie scanning and consent management through tools like OneTrust
• Help build and mature our privacy program, with a focus on practical, scalable solutions
• Support vendor onboarding and risk assessments in partnership with InfoSec
• Collaborate with outside counsel to stay ahead of regulatory changes and translate them into actionable policy
• Partner cross-functionally to educate teams and maintain consistent privacy practices
• Participate in audit readiness efforts and support FedRAMP privacy deliverables

Preferred Qualifications

• Exposure to FHIR, HL7, or cybersecurity frameworks
• Experience with building AI policies and procedures

Benefits

• Full health benefits (medical, dental, and vision)
• Flexible spending accounts
• Company paid life insurance
• Company paid short-term & long-term disability
• Company equity
• Voluntary benefits
• 401(k)
• Manager development cohorts
• Employee development funds
• Company holidays, Winter & Summer break, and flexible time off
• Employee Resource Groups (ERGs)