Data Privacy Manager US

What you'll bring to the team

We’re committed to protecting our guests' and employees' data while delivering world-class entertainment experiences. We are seeking a Data Privacy Manager to drive compliance governance across North America and contribute to the global data protection strategy.

Reporting to the VP of Data Privacy & Governance US, you will play a pivotal role in ensuring adherence to data protection laws and best practices, working closely with internal teams and external partners to manage risk, ensure compliance, and promote awareness of information governance obligations.

Key responsibilities:

• Drive the global data protection strategy across North America, ensuring alignment with regulatory requirements
• Enforce and enhance the data protection compliance framework, acting as the local point of contact for all BAU compliance matters
• Conduct risk assessments, including DPIAs, TIAs, LIAs, and vendor due diligence reviews
• Maintain Records of Processing Activities (RoPA) and support the management of the data protection risk register
• Lead audits and testing controls for internal functions and third-party suppliers, providing reports and recommendations
• Monitor and report on changes in global data protection laws, advising on necessary compliance updates
• Develop and deliver in-house training programs, promoting awareness of data protection across IT, Legal, HR, Marketing, and senior leadership
• Manage data subject rights processes, ensuring legal obligations are met for information requests, redactions, and responses
• Provide KPI reports, tracking key risks, trends, and performance indicators such as training engagement, information requests, and data breaches 

Qualifications & Experience

• Experience in a qualified legal role applying and interpreting US data protection laws including CCPA, HIPPA, COPPA, CPRA and data protection laws of other territories such as GDPR.
• Creating and implementing effective regional privacy policies, guidelines, and processes that align with business needs and regulatory requirements.
• Managing risk related to personal data processing initiatives, data privacy breaches, ensuring effective risk mitigation measures are in place, and handling incident response processes.
• Ensuring organizational buy-in for privacy initiatives, communicating complex legal compliance matters into easy-to-apply actionable language for business stakeholders, handling data subject rights requests (access, rectification, and deletion requests), and collaborating with internal and external stakeholders to maintain transparency and trust for both employees and guests.

Benefits

Benefits of Merlin Entertainments

• Excellent health care options (medical, dental, and vision that encourage preventative care).
• Outstanding Paid Time Off (PTO) that allows for adventure, rest, relaxation, or recuperation.
• Merlin Magic Pass for friends and family to enjoy the parks & attractions
• Recognition Programs and Rewards
• 401(k) program with company match
• Tuition reimbursement programs
• Numerous learning and advancement opportunities

If you have any questions or if you require any assistance, because of a disability or medical condition, please contact us by email at Recruitment@Merlinentertainments.biz and one of the team will get back to you as soon as possible.

#LI-Hybrid

Pay Range