Job Title

Job Description:Job Title: Privacy and Data Protection Associate Location: Thane. (Client site) Employment Type: Full-timeAbout the Role:We are seeking a dedicated Privacy and Data Protection Associate to support the execution of our client's Privacy program. This role will focus on ensuring compliance with the Indian Digital Personal Data Protection Act (DPDPA) 2023, as well as other relevant privacy and data protection regulations such as GDPR, CCPA, or similar international mandates. Based at a client location, you will collaborate with cross-functional teams to implement privacy controls, conduct assessments, and mitigate risks related to personal data handling. The ideal candidate is detail-oriented, proactive, and passionate about data privacy in a dynamic client-facing environment.Key Responsibilities:Assist in the day-to-day execution of the Privacy program, including monitoring and enforcing compliance with DPDPA requirements such as data minimization, consent management, data subject rights (e.g., access, rectification, erasure), and data breach notifications. Conduct privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new projects, processes, or technologies at the client site to identify and address potential risks. Support the implementation of privacy-by-design principles in client operations, ensuring alignment with DPDPA and analogous laws like GDPR for cross-border data transfers. Review and update privacy policies, procedures, and notices to reflect regulatory changes, including those related to sensitive personal data, automated processing, and children's data under DPDPA. Handle data subject requests (DSRs) efficiently, coordinating with internal teams to fulfill obligations within stipulated timelines. Collaborate with client stakeholders, IT, legal, and business units to integrate privacy controls into data processing activities, such as vendor management and third-party data sharing. Monitor regulatory developments in Indian and global privacy laws, providing updates and recommendations to the Privacy team. Assist in incident response for data breaches, including reporting to the Data Protection Authority (DPA) as required under DPDPA. Conduct training sessions and awareness programs for client employees on privacy best practices and compliance obligations. Maintain documentation and records of privacy activities to support audits, inspections, or regulatory inquiries. Participate in privacy audits and gap analyses to ensure ongoing compliance and continuous improvement of the Privacy program.Required Qualifications and Experience:Bachelor's degree in Law, Information Technology, Computer Science, or a related field; a Master's degree or certifications like CIPP/I, CIPP/A, or CDPSE are highly preferred. 2-4 years of experience in data privacy, compliance, or information security roles, with specific exposure to Indian DPDPA or similar regulations (e.g., IT Act 2000 amendments, GDPR). Proven experience working in a client-facing or consulting environment, ideally in sectors like IT services, finance, healthcare, or e-commerce where data protection is critical. Familiarity with data protection tools and frameworks, such as privacy management software (e.g., OneTrust, TrustArc) or risk assessment methodologies.Key Skills and Competencies:Strong understanding of privacy laws, including DPDPA's key principles (e.g., purpose limitation, accountability, transparency) and enforcement mechanisms. Excellent analytical and problem-solving skills, with the ability to assess complex data flows and recommend practical solutions. Proficient in Microsoft Office Suite and collaboration tools; experience with data mapping or auditing software is a plus. Effective communication skills, both written and verbal, to interact with diverse stakeholders and explain technical privacy concepts clearly. Ability to work independently at client locations while maintaining confidentiality and ethical standards. Attention to detail and organizational skills to manage multiple tasks in a fast-paced environment. Commitment to staying updated on evolving privacy regulations through continuous learning.Application Instructions:Interested candidates should submit their resume and a cover letter highlighting relevant experience in DPDPA compliance to careers@.