Privacy Program Analyst (Data Privacy)

Job Locations US-MN-Minneapolis | US-RI-Providence | US-Remote
Job ID
G&A - (Legal/Finance)
Posted Date
2 weeks ago(1/8/2021 4:48 PM)
Regular Full-Time


Who is Virgin Pulse?

Virgin Pulse, founded as part of Sir Richard Branson’s famed Virgin Group, helps organizations build employee health and wellbeing into the DNA of their corporate cultures. As the only company to deliver a powerful, mobile-first digital platform infused with live services, including coaching and biometric screenings, Virgin Pulse’s takes a high-tech-meets-high-touch-approach to engage employees in improving across all aspects of their health and wellbeing, every day – from prevention and building a healthy lifestyle to condition and disease management to condition reversal, all while engaging users daily in building and sustaining healthy habits and behaviors. A global leader in health and wellbeing, Virgin Pulse is committed to helping change lives and businesses around the world for good so that people and organizations can thrive, together. Today, more than 3100 organizations across the globe are using Virgin Pulse’s solutions to improve health, employee wellbeing and engagement, reduce costs and create strong workplace cultures. 

Who are our employees? 

At Virgin Pulse we’re passionate about changing lives for good. We want to make a difference in the world by helping people be healthy so they can perform at their best, every day, at work and home. Our award-winning solutions support leading employers in improving and simplifying the employee health and wellbeing journey and engaging people in all aspects of their health. But our world-class products and programs are nothing without our people – the employees who design, build, promote, sell, test and perfect the latest innovations in workplace health and wellbeing. Our people are our top priority and we invest in their health and happiness. At Virgin Pulse, we have so much more than a strong, supportive company culture – have a shared vision for a healthier, happier world.


Who you are.


Preferred location: Minneapolis, MN, Providence, RI OR Remote


You are a data privacy/protection professional with experience of at least 2 years operating in an internal legal and regulatory compliance framework focused primarily on management of Privacy / Data protection program. 


The roles and the responsibilities of the Privacy groups has increased substantially with Virgin Pulse’s growth and product expansion and an additional resource is required to ensure all privacy operations and duties are managed effectively and efficiently. The role will operate across various departments, supporting vendor and partner due diligence processes, providing feedback and support to sales and client-facing delivery teams and supporting the general administration and management of the program across all Virgin Pulse entities and platforms.


In the role you will wear many hats but your attention will be crucial in the following;

  • Contract Negotiation: review and negotiate data protection addendum and standard contractual clauses with clients and vendors.
  • Managing data protection regulatory requirement: Work closely with delivery teams and ensure applicable legal and compliance requirements are met.
  • Active support to Privacy Officer: Ensure successful deployment of critical deliverables related to bolstering privacy program.
  • Policy Management and Governance: Ensure successful management and updates to external user notices and internal policies.
  • External Privacy Certifications and Assessments: Lead response efforts to external data protection assessments for clients and third-party certifications.
  • Data Subject Rights: Investigate and respond to escalated data subject rights requests to meet national, state and international requirements, including HIPAA, GDPR, and CCPA.
  • Privacy Impact Assessments: Assist with executing Privacy Impact Assessments (PIA) and Data Protection Impact Assessments (DPIA).
  • Records of Processing Activity: Oversee maintenance of records of processing activity.
  • Privacy Incident and Data Breach Management: Support the Privacy Officer and Legal team in management of incident response planning and prepping, program and management in partnership with Cyber Security Incident Response Team.


What you bring to the team

    • Minimum overall experience of 2-3 years operating in an internal legal and regulatory compliance framework with a focus on Privacy / Data protection;
    • Experience with SaaS, PaaS, etc.;
    • Knowledge of domestic and international privacy / data protection laws, including GDPR, CCPA, HIPAA, PIPEDA, etc.
    • Proficient with managing core and corollary data protection activities like: Data Protection Impact Assessments, vendor reviews and due diligence, data mapping, system governance, policy and procedure drafting, incident response management et al;
    • Exposure to global privacy landscape and specifically to European data protection legal and regulatory environment;
    • Managing legal and regulatory compliance;
    • Experience of managing projects at a global scale in a multi-national corporation – preferred;
    • Experience in a fast pace environment including working with sales teams and product teams;
    • Any professional qualification of data protection laws such as CIPM or CIPP/E et al – preferred.

Why work here?  

We believe a career should provide competitive pay and benefits, a collaborative and supportive work environment, strong employee culture and cutting-edge technology and services — so many reasons to love it here. 


*We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to any protected class status. 


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed