Privacy Program Manager

Summary

Join Toast's Legal & Compliance team as an experienced Privacy Program Manager. You will play a key role in developing and maintaining a global privacy program, ensuring compliance with laws and best practices. Responsibilities include operationalizing privacy requirements, managing risk, handling individual rights requests, and collaborating with cross-functional teams. You will also develop training programs and establish key performance indicators. This position requires a Bachelor's degree and 5+ years of relevant experience with global privacy regulations. The ideal candidate will possess strong project management, communication, and analytical skills. Toast offers a competitive compensation and benefits package, including a hybrid work model.

Requirements

• Bachelor's degree or equivalent
• 5+ years of relevant privacy experience, with a strong understanding of global privacy regulations (GDPR, CCPA, PIPEDA, etc.)
• Comprehensive knowledge of global privacy laws and the ability to apply them practically in a business setting
• Ability to collaborate with technical teams on data flows, architectures, and system design, with familiarity in privacy-enhancing technologies
• Strong project management skills, with the capacity to align privacy initiatives with business goals and manage multiple priorities
• Excellent communication and interpersonal skills, with the ability to simplify complex concepts, and strong analytical and problem-solving skills with attention to detail

Responsibilities

• Develop and maintain Toast's global privacy program, ensuring compliance with laws and best practices across the US, Canada, Europe, and the UK
• Translate privacy requirements into actionable processes, manage privacy risk registers, and conduct Data Protection Impact Assessments (DPIAs) in collaboration with cross-functional teams
• Manage individual rights requests, enhance response processes, and support investigations and remediation of privacy incidents and data breaches
• Partner with Commercial Legal and Procurement to ensure vendor contracts meet privacy obligations and standards, and help mature review processes
• Develop and deliver privacy training programs, and collaborate on data governance frameworks for data classification and lifecycle management
• Establish and track key performance indicators (KPIs) to measure program effectiveness and provide regular reports to leadership

Preferred Qualifications

• Privacy certifications (CIPP/E, CIPP/US, CIPM, etc.)
• SaaS or tech industry experience

Benefits

• Competitive compensation and benefits programs
• Cash compensation (overtime, bonus/commissions if eligible)
• Equity
• Hybrid work model