Gravity IT Resources
Job Title: Privacy Compliance Business Analyst
Location: Miami, Florida
Job-Type: 6 month contract to hire
Employment Eligibility: Gravity cannot transfer nor sponsor a work visa for this position. Applicants must be eligible to work in the U.S. for any employer directly (we are not open to contract or “corp to corp” agreements).
Summary of Position:
The Privacy Compliance Analyst role reports to the Privacy IT Manager on the Controls & Compliance Team. The Role will collaborate closely with cross-functional teams, including customer relationship management, marketing and legal to execute our Data Subject Access Request (DSARs) Process. Knowledge of privacy regulations and ability to interpret and apply them to our data protection practices will be essential in fulfilling privacy rights and maintaining our stakeholders and consumers’ trust.
Principal Duties and Responsibilities:
- Stay up to date with privacy regulations, including but not limited to CPRA, VCDPA, CPA, CTDPA, UCPA and other relevant laws and guidelines.
- Process Data Subject Access Requests (DSARs) from beginning to end, and meeting deadline(s) as required by law.
- Prepare monthly and year over year DSAR reports.
- Maintain and update DSAR response templates as needed upon approval.
- Analyze monthly communication preferences’ updates and trends.
- Develop and maintain a comprehensive understanding of online and offline marketing practices, and their implications for data privacy.
- Collaborate with marketing and IT teams to ensure that privacy requests, communications consent, and opt-out options are implemented correctly and in compliance with privacy regulations.
- Conduct Data Protection Impact Assessments (DPIAs) on existing applications, new applications and enhancements.
- Fulfill additional, relevant, tasks appropriate to the role and business demands
- Assist in product integration and enhance business value where necessary
Education and Experience Requirements:
- Bachelor’s degree in a relevant field, such as privacy, information management, or a related discipline. Additional certifications in data protection and privacy are a plus.
- Strong knowledge of privacy regulations, such as CCPA/CPRA, and other relevant laws, guidelines, and frameworks.
- Excellent analytical skills with the ability to apply regulations to practical scenarios.
- Effective communication skills, both written and verbal, with the ability to articulate privacy-related concepts to diverse stakeholders.
- Ability to work independently as well as collaboratively in a cross-functional team environment and manage multiple projects concurrently.
- Familiarity with data protection impact assessments, data mapping, and other compliance-related tools and methodologies.