989 Privacy jobs in the United States

NATIONAL LEADERS IN PEDIATRIC CARE

Ranked among the top 10 pediatric hospitals in the nation, Children's Hospital Los Angeles (CHLA) provides the best care for kids in California.

Here world-class experts in medicine, education and research work together to deliver family-centered care half a million times each year. From primary to complex critical care, more than 350 programs and services are offered, each one specially designed for children.

The CHLA of the future is brighter than can be imagined. Investments in technology, research and innovation will create care that is personal, convenient and empowering. Our scientists will work with clinical experts to take laboratory discoveries and create treatments that are a perfect match for every patient. And together, CHLA team members will turn health care into health transformation.

Join a hospital where the work you do will matter-to you, to your colleagues, and above all, to our patients and families. The work will be challenging, but always rewarding.

It's Work That Matters.

Overview

This position is 100% onsite.

Purpose Statement/Position Summary: Under the direction of the Chief Compliance Officer and/or their designee, the Compliance and Privacy Specialist serves as a compliance and privacy specialist and helps manage inquiries on a variety of compliance and privacy topics by gathering additional details on the questions/issues and conducting relevant research. This position will serve as a subject-matter expert on compliance and privacy topics and by maintaining comprehensive knowledge of applicable laws, regulations and policies. This position will interact with all levels of CHLA management, employees, physicians, and patients, as well as external regulators and outside counsel, in conducting compliance/privacy investigations, reviewing complaints and concerns pertaining to compliance/privacy, maintaining necessary documentation and taking appropriate follow-up action as needed. The Compliance and Privacy Specialist assists with the ongoing progression and development, training and education initiatives, and compliance programmatic developments and enhancements.

Minimum Qualifications/Work Experience:

One or more years' experience in a compliance role within a health care setting, or an equivalent combination of education and experience.

· Knowledge of operational and regulatory issues related to healthcare compliance and privacy.

· Exceptional time management and multitasking skills

· Demonstrated effectiveness in project management development.

· Excellent analytical, problem-solving, and decision-making skills.

· Ability to work effectively with Workforce Members at all levels.

· Excellent writing and communication skills.

· Demonstrated investigatory skills, including interviewing people as part of ongoing investigation.

· Knowledge of, and experience with, federal and state patient privacy laws.

Education/Licensure/Certification: Bachelors required; advanced degree preferred. Certification in HealthCare Compliance (CHC), Privacy Compliance (CHPC), or Healthcare Research Compliance (CHRC) preferred.

Pay Scale Information

$68,640.00-$104,832.00

CHLA values the contribution each Team Member brings to our organization. Final determination of a successful candidate's starting pay will vary based on a number of factors, including, but not limited to education and experience within the job or the industry. The pay scale listed for this position is generally for candidates that meet the specified qualifications and requirements listed on this specific job description. Additional pay may be determined for those candidates that exceed these specified qualifications and requirements. We provide a competitive compensation package that recognizes your experience, credentials, and education alongside a robust benefits program to meet your needs. CHLA looks forward to introducing you to our world-class organization where we create hope and build healthier futures.

Children's Hospital Los Angeles (CHLA) is a leader in pediatric and adolescent health both here and across the globe. As a premier Magnet teaching hospital, you'll find an environment that's alive with learning, rooted in care and compassion, and home to thought leadership and unwavering support. CHLA is dedicated to creating hope and building healthier futures - for our patients, as well as for you and your career!

CHLA has been affiliated with the Keck School of Medicine of the University of Southern California since 1932.

At Children's Hospital Los Angeles, our work matters. And so do each and every one of our valued team members. CHLA is an Equal Employment Opportunity employer. We consider qualified applicants for all positions without regard to race, color, religion, creed, national origin, sex, gender identity, age, physical or mental disability, sexual orientation, marital status, veteran or military status, genetic information or any other legally protected basis under federal, state or local laws, regulations or ordinances. We will also consider for employment qualified applicants with criminal history, in a manner consistent with the requirements of state and local laws, including the LA City Fair Chance Ordinance and SF Fair Chance Ordinance.

Qualified Applicants with disabilities are entitled to reasonable accommodation under the California Fair Employment and Housing Act and the Americans with Disabilities Act. Please contact CHLA Human Resources if you need assistance completing the application process.

Our various experiences, perspectives and backgrounds allow us to better serve our patients and create a strong community at CHLA.

Office of Compliance & Privacy

Overview

Join to apply for the Legal Specialist - Privacy role at Waymo .

Waymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—to improve access to mobility while saving lives. The Waymo Driver powers Waymo’s autonomous ride-hail service and can be applied to a range of vehicle platforms and product use cases. The Waymo Driver has provided rider-only trips and driven millions of miles on public roads and in simulation across multiple states.

• Lead and coordinate cross-functional privacy projects, including technical audit programs and pre-launch reviews for new products/features, ensuring alignment on program goals, timelines, and successful delivery of business, operational, and technical improvements for multiple compliance programs.
• Conduct in-depth risk assessments, proactively identify potential compliance gaps, and develop and implement mitigation plans.
• Conduct Privacy Impact Assessments (PIAs/DPIAs) for new AV features, data processing activities, and third-party integrations, identifying and mitigating privacy risks.
• Develop, implement, and maintain AV-specific privacy policies, standards, and data governance frameworks (e.g., data mapping, retention schedules).
• Collaborate closely with engineering, information security, and product teams to embed privacy-by-design principles and ensure privacy requirements are met in technical discussions and implementations.
• Support regulatory inquiries, certification requirements, and AI compliance efforts, working with legal counsel to demonstrate and ensure compliance across various jurisdictions.

• Excellent organizational, analytical, problem-solving, and communication skills, with the ability to translate complex privacy requirements into actionable guidance for technical and non-technical teams.
• Bachelor’s degree in a relevant field (e.g., Law, Information Systems, Business, or equivalent practical experience).
• 5 years of experience in compliance, policy, risk management, investigation, auditing, legal, or consulting, preferably with a strong focus on data privacy.
• Solid understanding of US and EU privacy laws and frameworks (e.g., CCPA/CPRA, BIPA, TDPSA, GDPR).
• Experience developing and enforcing policies for products and services.

• Advanced degree in Law, Business, Privacy, Compliance or a related field.
• Experience in compliance program management principles, risk assessment methodologies, and internal control frameworks within the AV industry.
• Demonstrated experience managing Data Subject Rights (DSR) requests under global privacy regulations (e.g., GDPR, CCPA/CPRA).
• Proven ability to conduct Privacy Impact Assessments (PIAs/DPIAs) and identify/mitigate privacy risks in complex data environments.
• Experience in bringing structure and clarity to ambiguous situations, enabling the ability to analyze fragmented information, identify key attributes, and develop balanced recommendations and effective solutions with problem-solving capabilities.
• Solid understanding of global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA, LGPD, UK GDPR).

• Occasional travel may be needed

The expected base salary range for this full-time position across US locations is listed below. Actual starting pay will be based on job-related factors, including exact work location, experience, relevant training and education, and skill level. Waymo employees are eligible to participate in Waymo’s discretionary annual bonus program, equity incentive plan, and generous Company benefits program, subject to eligibility requirements.

Salary Range
$120,000—$151,000 USD

Overview

Waymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—The World's Most Experienced Driver—to improve access to mobility while saving thousands of lives now lost to traffic crashes. The Waymo Driver powers Waymo’s fully autonomous ride-hail service and can also be applied to a range of vehicle platforms and product use cases. The Waymo Driver has provided over ten million rider-only trips, enabled by its experience autonomously driving over 100 million miles on public roads and tens of billions in simulation across 15+ U.S. states.

As part of Waymo's Legal team, you will work on the exciting legal issues surrounding our transformational autonomous driving technology and help drive our business lines forward from technology ideation through scaled commercial deployment. We partner with our public policy, safety, security and privacy experts to define transportation policy for the autonomous driving world to come, advising on regulatory changes that support and protect our users around the world. We collaborate with our engineering, product, strategy and operations teams to develop and protect our intellectual property portfolio and drive our corporate and commercial transactions. We ensure compliance with an increasingly complex and dynamic range of global regulations. And we anticipate, mitigate, and litigate high-profile and precedent-setting legal matters.

In this hybrid role, you will report into our Managing Counsel, Product, AI & Privacy.

Overview

Waymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—The World's Most Experienced Driver—to improve access to mobility while saving thousands of lives now lost to traffic crashes. The Waymo Driver powers Waymo’s fully autonomous ride-hail service and can also be applied to a range of vehicle platforms and product use cases. The Waymo Driver has provided over ten million rider-only trips, enabled by its experience autonomously driving over 100 million miles on public roads and tens of billions in simulation across 15+ U.S. states.

As part of Waymo's Legal team, you will work on the exciting legal issues surrounding our transformational autonomous driving technology and help drive our business lines forward from technology ideation through scaled commercial deployment. We partner with our public policy, safety, security and privacy experts to define transportation policy for the autonomous driving world to come, advising on regulatory changes that support and protect our users around the world. We collaborate with our engineering, product, strategy and operations teams to develop and protect our intellectual property portfolio and drive our corporate and commercial transactions. We ensure compliance with an increasingly complex and dynamic range of global regulations. And we anticipate, mitigate, and litigate high-profile and precedent-setting legal matters.

In this hybrid role, you will report into our Managing Counsel, Product, AI & Privacy.

• Lead and coordinate cross-functional privacy projects, including technical audit programs and pre-launch reviews for new products/features, ensuring alignment on program goals, timelines, and successful delivery of business, operational, and technical improvements for multiple compliance programs.
• Conduct in-depth risk assessments, proactively identify potential compliance gaps, and develop and implement mitigation plans.
• Conduct Privacy Impact Assessments (PIAs/DPIAs) for new AV features, data processing activities, and third-party integrations, identifying and mitigating privacy risks.
• Develop, implement, and maintain AV-specific privacy policies, standards, and data governance frameworks (e.g., data mapping, retention schedules).
• Collaborate closely with engineering, information security, and product teams to embed privacy-by-design principles and ensure privacy requirements are met in technical discussions and implementations.
• Support regulatory inquiries, certification requirements, and AI compliance efforts, working with legal counsel to demonstrate and ensure compliance across various jurisdictions.

• Excellent organizational, analytical, problem-solving, and communication skills, with the ability to translate complex privacy requirements into actionable guidance for technical and non-technical teams.
• Bachelor's degree in a relevant field (e.g., Law, Information Systems, Business, or equivalent practical experience).
• 5 years of experience in compliance, policy, risk management, investigation, auditing, legal, or consulting, preferably with a strong focus on data privacy.
• Solid understanding of US and EU privacy laws and frameworks (e.g., CCPA/CPRA, BIPA, TDPSA, GDPR).
• Experience developing and enforcing policies for products and services.

• Advanced degree in Law, Business, Privacy, Compliance or a related field.
• Experience in compliance program management principles, risk assessment methodologies, and internal control frameworks within the AV industry.
• Demonstrated experience managing Data Subject Rights (DSR) requests under global privacy regulations (e.g., GDPR, GDPR/CCPA).
• Proven ability to conduct Privacy Impact Assessments (PIAs/DPIAs) and identify/mitigate privacy risks in complex data environments.
• Experience in bringing structure and clarity to ambiguous situations, enabling the ability to analyze fragmented information, identify key attributes, and develop balanced recommendations and effective solutions with problem-solving capabilities.
• Solid understanding of global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA, LGPD, UK GDPR).

• Occasional travel may be needed

The expected base salary range for this full-time position across US locations is listed below. Actual starting pay will be based on job-related factors, including exact work location, experience, relevant training and education, and skill level. Your recruiter can share more about the specific salary range for the role location or, if the role can be performed remote, the specific salary range for your preferred location, during the hiring process.

Waymo employees are also eligible to participate in Waymo’s discretionary annual bonus program, equity incentive plan, and generous Company benefits program, subject to eligibility requirements.

Salary Range

$120,000—$151,000 USD

Overview

Waymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—the world's most experienced driver—to improve access to mobility while saving thousands of lives now lost to traffic crashes. The Waymo Driver powers Waymo's fully autonomous ride-hail service and can also be applied to a range of vehicle platforms and product use cases. The Waymo Driver has provided over ten million rider-only trips, enabled by its experience autonomously driving over 100 million miles on public roads and tens of billions in simulation across 15+ U.S. states.

As part of Waymo's Legal team, you will work on the exciting legal issues surrounding our transformational autonomous driving technology and help drive our business lines forward from technology ideation through scaled commercial deployment. We partner with our public policy, safety, security and privacy experts to define transportation policy for the autonomous driving world to come, advising on regulatory changes that support and protect our users around the world. We collaborate with our engineering, product, strategy and operations teams to develop and protect our intellectual property portfolio and drive our corporate and commercial transactions. We ensure compliance with an increasingly complex and dynamic range of global regulations. And we anticipate, mitigate, and litigate high-profile and precedent-setting legal matters.

In this hybrid role, you will report into our Managing Counsel, Product, AI & Privacy.

• Lead and coordinate cross-functional privacy projects, including technical audit programs and pre-launch reviews for new products/features, ensuring alignment on program goals, timelines, and successful delivery of business, operational, and technical improvements for multiple compliance programs.
• Conduct in-depth risk assessments, proactively identify potential compliance gaps, and develop and implement mitigation plans.
• Conduct Privacy Impact Assessments (PIAs/DPIAs) for new AV features, data processing activities, and third-party integrations, identifying and mitigating privacy risks.
• Develop, implement, and maintain AV-specific privacy policies, standards, and data governance frameworks (e.g., data mapping, retention schedules).
• Collaborate closely with engineering, information security, and product teams to embed privacy-by-design principles and ensure privacy requirements are met in technical discussions and implementations.
• Support regulatory inquiries, certification requirements, and AI compliance efforts, working with legal counsel to demonstrate and ensure compliance across various jurisdictions.

• Excellent organizational, analytical, problem-solving, and communication skills, with the ability to translate complex privacy requirements into actionable guidance for technical and non-technical teams.
• Bachelor's degree in a relevant field (e.g., Law, Information Systems, Business, or equivalent practical experience).
• 5 years of experience in compliance, policy, risk management, investigation, auditing, legal, or consulting, preferably with a strong focus on data privacy.
• Solid understanding of US and EU privacy laws and frameworks (e.g., CCPA/CPRA, BIPA, TDPSA, GDPR).
• Experience developing and enforcing policies for products and services.

• Advanced degree in Law, Business, Privacy, Compliance or a related field.
• Experience in compliance program management principles, risk assessment methodologies, and internal control frameworks within the AV industry.
• Demonstrated experience managing Data Subject Rights (DSR) requests under global privacy regulations (e.g., GDPR, CCPA/CPRA).
• Proven ability to conduct Privacy Impact Assessments (PIAs/DPIAs) and identify/mitigate privacy risks in complex data environments.
• Experience in bringing structure and clarity to ambiguous situations, enabling the ability to analyze fragmented information, identify key attributes, and develop balanced recommendations and effective solutions with problem-solving capabilities.
• Solid understanding of global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA, LGPD, UK GDPR).

• Occasional travel may be needed

The expected base salary range for this full-time position across US locations is listed below. Actual starting pay will be based on job-related factors, including exact work location, experience, relevant training and education, and skill level. Your recruiter can share more about the specific salary range for the role location or, if the role can be performed remote, the specific salary range for your preferred location, during the hiring process.

Waymo employees are also eligible to participate in Waymo's discretionary annual bonus program, equity incentive plan, and generous Company benefits program, subject to eligibility requirements.

Salary Range

$120,000 — $151,000 USD

Privacy & Data Compliance Specialist - USDS

The USDS Privacy and Integrated Security team is responsible for overseeing and governing all activities of privacy impacts to TikTok USDS' operations. This role is aimed at strengthening security and privacy, in our mission to Inspire Creativity and Enrich Lives. The Privacy and Data Compliance Specialist aligns USDS privacy practice with the global privacy compliance framework (PCF), working with global legal, R&D, Privacy and Data Protection Offices (PDPO), and USDS privacy operation teams. The ideal candidate has a strong background in privacy compliance assessment, an understanding of privacy control mechanisms at technical layers, and a user-centered view of privacy considerations.

Initially reporting to the Head of Privacy and Integrated Security, the reporting structure may evolve as the capability grows. The organization follows a hybrid work schedule requiring office presence 3 days a week, or as directed by management. The specific requirements may change over time.

• Collaborate with global PDPO to ensure alignment with the global privacy compliance framework (PCF). Promote the global framework within USDS operating arms.
• Support privacy compliance assessments, identifying gaps in alignment with the global PCF, including privacy controls and safeguards across products.
• Draft and implement policies, processes, and Standard Operating Procedures (SOPs) to formalize privacy practice and improve privacy operations at USDS, contributing to the broader global privacy framework.
• Build strong relationships with global and US stakeholders, including R&D/PDPO and US privacy operations, and champion privacy best practices across the organization.
• Support privacy risk assessments with a focus on control implementation; provide actionable recommendations to mitigate identified risks and enhance privacy compliance.
• Balance business and engineering cost considerations with robust privacy practices.
• Engage in special projects as the team expands and capabilities are enhanced.

• Minimum Qualifications: Major in information security, computer science, law or related field. Significant experience in security, privacy and data protection may substitute formal degree. 3-5+ years of compliance experience. Familiar with industry standards frameworks (NIST Privacy Framework, ISO 27001, ISO/IEC 27701, NIST RMF, ISO 31000, IAPP guidelines, etc.).
• Understanding of laws and regulations across key regions (e.g., GDPR, CCPA, COPPA). Familiar with PIA/DPIA methods; able to propose practical privacy controls considering business processes and technical capabilities.
• Ability to navigate complexities in a large enterprise environment.

• Preferred Qualifications: Experience overseeing GDPR/CCPA external compliance reviews, SOC2, ISO27001, ISO27701 system construction, data governance systems; familiarity with data governance and data security technology solutions; relevant certifications (CIPT, CIPM, CIPP, CISSP, CRISC, etc.).

TikTok is the leading destination for short-form mobile video. U.S. Data Security (USDS) is a TikTok subsidiary in the U.S. This security-focused division provides heightened governance to data protection policies and content assurance protocols to protect U.S. users.

This role requires working with systems designed to protect sensitive data and information and may be subject to national security-related screening.

We strive to inspire creativity and bring joy. Our diverse, global teams work to create value for communities and users. We foster curiosity, humility, and an “Always Day 1” mindset to achieve meaningful breakthroughs together.

TikTok is committed to an inclusive workplace that values varied experiences and perspectives. We celebrate diverse voices to reflect the communities we reach.

USDS provides reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, or other protected reasons. Please contact us for assistance.

Compensation and benefits vary by location and may include base salary, bonuses, stock units, medical/dental/vision coverage, 401(k) with company match, parental leave, disability coverage, life insurance, wellbeing benefits, and paid time off. Information provided for transparency purposes.

3 days ago Be among the first 25 applicants

Responsibilities
Team Intro
The USDS Privacy and Integrated Security team is responsible for overseeing and governing all activities of privacy impacts to TikTok USDS' operations.
- We address complex and cutting-edge challenges, aiming to build the world's most trusted social media platform.
- We partner with TikTok global legal, R&D, privacy and security organizations in advancing our privacy practices.
- We oversee, govern and support the integration and optimization of operational privacy capabilities including data inventory, data classification, data retention/deletion, and incident response, etc., to ensure scalable, mature, and compliant privacy and data protection practices.
We seek a highly motivated, experienced, and dynamic professional to join our team. This is an opportunity to work on the most innovative platform in the industry, strengthening security and privacy, in our mission to Inspire Creativity and Enrich Lives.

In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.

We are seeking a Privacy Technical Compliance Specialist to join our Privacy and Integrated Security team, to be based in SJ with a focus on Technical Privacy verification and validation. You will interact with Product, Engineering, Legal, Business and other Security and Privacy Teams and will play a critical role in upholding the privacy rights of our users, ensuring the protection of their personal information, ensuring compliance with global privacy laws, and promoting the adoption of best practices. If you are passionate about privacy, data protection, and possess the expertise to assess and enhance our technical privacy practices, we invite you to join our team and contribute to our mission of maintaining the highest standard of data privacy and security.

Reporting Structure:
This role will report to the compliance pillar lead within the privacy organization.

Key Responsibilities:
- Conduct privacy compliance reviews and make determinations related to technical privacy requirements such as Data Retention, Data Minimization, Purpose Limitation, AI Privacy, Visibility/Choice and others for a wide range of technical products, devices, and services.
- Develop automation and data pipelines to streamline artifacts collection. Develop services and drive remediation.
- Identify technical privacy related issues and effectively manage escalation and exception processes, including communication to leadership as needed.
- Work with stakeholders such as privacy, legal, policy, and engineering teams to ensure sound protocols are in place to manage evolving privacy obligations.
- Contribute to improvements to privacy compliance processes, mechanisms, and tooling.
- Support cross-functional projects to address emerging global privacy obligations.
- Review and improve program/product controls in partnership with Legal and Product teams.
- Collaborate on the implementation and maintenance of privacy policies and guidelines, ensuring they are up to date and effective.
- Engagement in special projects and additional responsibilities may be needed as the team expands and capabilities are enhanced.

Qualifications
Minimum Qualifications
- 5+ years in data engineering, tooling automation, privacy/security, technical program management or industry equivalent work experience.
- 4+ years of experience working in a global, large-scale, complex, and fast-paced environment.
- Strong analytical skills, communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization.
- Strong project management skills, with the ability to manage multiple tasks simultaneously and prioritize appropriately.
- Detail-oriented, with the ability to identify and mitigate risks.
- Must be adaptable and able to navigate through ambiguity and vagueness within a large complex organization.

Preferred Qualifications
- Knowledge of building and maintaining data pipelines/artifacts automation
- Knowledge of privacy laws, regulations and industry best practices, including GDPR, the California Consumer Privacy Act, and HIPAA.
- Proven track record of delivering ambitious programs/organizational change in a technical audit or privacy field.
- Relevant certifications in Security/Privacy, for example: CISSP, CISA,CIPP/E, CIPM are a plus.
- Experience with developing reports, metrics, and reporting mechanisms

About USDS
TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.

Data Security Statement
This role requires the ability to work with and support systems designed to protect sensitive data and information. As such, this role will be subject to strict national security-related screening.


Why Join Us
Inspiring creativity is at the core of TikTok's mission. Our innovative product is built to help people authentically express themselves, discover and connect – and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and bring joy - a mission we work towards every day.
We strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. Every challenge is an opportunity to learn and innovate as one team. We're resilient and embrace challenges as they come. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our company, and our users. When we create and grow together, the possibilities are limitless. Join us.

Diversity & Inclusion
TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.


USDS Reasonable Accommodation
USDS is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at Information
【For Pay Transparency】Compensation Description (Annually)
The base salary range for this position in the selected city is $98800 - $ annually.
Compensation may vary outside of this range depending on a number of factors, including a candidate’s qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.
Benefits may vary depending on the nature of employment and the country work location. Employees have day one access to medical, dental, and vision insurance, a 401(k) savings plan with company match, paid parental leave, short-term and long-term disability coverage, life insurance, wellbeing benefits, among others. Employees also receive 10 paid holidays per year, 10 paid sick days per year and 17 days of Paid Personal Time (prorated upon hire with increasing accruals by tenure).
The Company reserves the right to modify or change these benefits programs at any time, with or without notice.
For Los Angeles County (unincorporated) Candidates:
Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Our company believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of the conditional offer of employment:
1. Interacting and occasionally having unsupervised contact with internal/external clients and/or colleagues;
2. Appropriately handling and managing confidential information including proprietary and trade secret information and access to information technology systems; and
3. Exercising sound judgment.

• Seniority level Associate

• Employment type Full-time

• Job function Engineering and Information Technology
• Industries Technology, Information and Internet

Referrals increase your chances of interviewing at TikTok by 2x

San Jose, CA $63,29 .28- 81,204.00 2 years ago

Mountain View, CA 100,000.00- 122,000.00 2 months ago

Mountain View, CA 65,000.00- 125,000.00 1 month ago

Fremont, CA 50,000.00- 110,000.00 1 month ago

Mountain View, CA 35.00- 52.00 2 months ago

Mountain View, CA 38.00- 52.00 1 month ago

Mountain View, CA 38.00- 52.00 2 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Responsibilities

Team Intro The USDS Privacy and Integrated Security team is responsible for overseeing and governing all activities of privacy impacts to TikTok USDS' operations. - We address complex and cutting-edge challenges, aiming to build the world's most trusted social media platform. - We partner with TikTok global legal, R&D, privacy and security organizations in advancing our privacy practices. - We oversee, govern and support the integration and optimization of operational privacy capabilities including data inventory, data classification, data retention/deletion, and incident response, etc., to ensure scalable, mature, and compliant privacy and data protection practices. We seek a highly motivated, experienced, and dynamic professional to join our team. This is an opportunity to work on the most innovative platform in the industry, strengthening security and privacy, in our mission to Inspire Creativity and Enrich Lives. In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time. We are seeking a Privacy Technical Compliance Specialist to join our Privacy and Integrated Security team, to be based in SJ with a focus on Technical Privacy verification and validation. You will interact with Product, Engineering, Legal, Business and other Security and Privacy Teams and will play a critical role in upholding the privacy rights of our users, ensuring the protection of their personal information, ensuring compliance with global privacy laws, and promoting the adoption of best practices. If you are passionate about privacy, data protection, and possess the expertise to assess and enhance our technical privacy practices, we invite you to join our team and contribute to our mission of maintaining the highest standard of data privacy and security. Reporting Structure: This role will report to the compliance pillar lead within the privacy organization. Key Responsibilities: - Conduct privacy compliance reviews and make determinations related to technical privacy requirements such as Data Retention, Data Minimization, Purpose Limitation, AI Privacy, Visibility/Choice and others for a wide range of technical products, devices, and services. - Develop automation and data pipelines to streamline artifacts collection. Develop services and drive remediation. - Identify technical privacy related issues and effectively manage escalation and exception processes, including communication to leadership as needed. - Work with stakeholders such as privacy, legal, policy, and engineering teams to ensure sound protocols are in place to manage evolving privacy obligations. - Contribute to improvements to privacy compliance processes, mechanisms, and tooling. - Support cross-functional projects to address emerging global privacy obligations. - Review and improve program/product controls in partnership with Legal and Product teams. - Collaborate on the implementation and maintenance of privacy policies and guidelines, ensuring they are up to date and effective. - Engagement in special projects and additional responsibilities may be needed as the team expands and capabilities are enhanced.

Qualifications

Minimum Qualifications - 5+ years in data engineering, tooling automation, privacy/security, technical program management or industry equivalent work experience. - 4+ years of experience working in a global, large-scale, complex, and fast-paced environment. - Strong analytical skills, communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. - Strong project management skills, with the ability to manage multiple tasks simultaneously and prioritize appropriately. - Detail-oriented, with the ability to identify and mitigate risks. - Must be adaptable and able to navigate through ambiguity and vagueness within a large complex organization. Preferred Qualifications - Knowledge of building and maintaining data pipelines/artifacts automation - Knowledge of privacy laws, regulations and industry best practices, including GDPR, the California Consumer Privacy Act, and HIPAA. - Proven track record of delivering ambitious programs/organizational change in a technical audit or privacy field. - Relevant certifications in Security/Privacy, for example: CISSP, CISA,CIPP/E, CIPM are a plus. - Experience with developing reports, metrics, and reporting mechanisms

Job Information

(For Pay Transparency)Compensation Description (Annually)

The base salary range for this position in the selected city is $98800 - $ annually.

Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience, and location. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work, and this role may be eligible for additional discretionary bonuses/incentives, and restricted stock units.

Benefits may vary depending on the nature of employment and the country work location. Employees have day one access to medical, dental, and vision insurance, a 401(k) savings plan with company match, paid parental leave, short-term and long-term disability coverage, life insurance, wellbeing benefits, among others. Employees also receive 10 paid holidays per year, 10 paid sick days per year and 17 days of Paid Personal Time (prorated upon hire with increasing accruals by tenure).

The Company reserves the right to modify or change these benefits programs at any time, with or without notice.

For Los Angeles County (unincorporated) Candidates:

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Our company believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of the conditional offer of employment:

1. Interacting and occasionally having unsupervised contact with internal/external clients and/or colleagues;

2. Appropriately handling and managing confidential information including proprietary and trade secret information and access to information technology systems; and

3. Exercising sound judgment.

About USDS

TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security ("USDS") is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and content assurance protocols to keep U.S. users safe. Our focus is on providing oversight and protection of the TikTok platform and U.S. user data, so millions of Americans can continue turning to TikTok to learn something new, earn a living, express themselves creatively, or be entertained. The teams within USDS that deliver on this commitment daily span across Trust & Safety, Security & Privacy, Engineering, User & Product Ops, Corporate Functions and more.

Data Security Statement

This role requires the ability to work with and support systems designed to protect sensitive data and information. As such, this role will be subject to strict national security-related screening.

Why Join Us

Inspiring creativity is at the core of TikTok's mission. Our innovative product is built to help people authentically express themselves, discover and connect - and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and bring joy - a mission we work towards every day.

We strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. Every challenge is an opportunity to learn and innovate as one team. We're resilient and embrace challenges as they come. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our company, and our users. When we create and grow together, the possibilities are limitless. Join us.

Diversity & Inclusion

TikTok is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At TikTok, our mission is to inspire creativity and bring joy. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.

USDS Reasonable Accommodation

USDS is committed to providing reasonable accommodations in our recruitment processes for candidates with disabilities, pregnancy, sincerely held religious beliefs or other reasons protected by applicable laws. If you need assistance or a reasonable accommodation, please reach out to us at

At Curriculum Associates, we believe in the potential of every child and are changing the face of education technology with award-winning learning programs like i-Ready that serve a third of the nation’s K–8 students. For more than 50 years, our commitment to making classrooms better places, serving educators, and supporting accessible learning experiences for all students has driven the continuous improvement of our innovative programs. Our team of more than 2,500 employees is composed of lifelong learners who stand behind this mission, working tirelessly to serve the educational community with world-class programs and support every day.

The Privacy and Data Protection Counsel supports the Company’s global operations and advises on data protection matters, including AI governance, with emphasis on U.S. laws. The Counsel will serve as the key point of contact on general data protection, privacy and security related matters, including the evolution and maintenance of the Company’s global privacy program and compliance efforts. The Privacy and Data Protection Counsel protects the growing business, and the students and educators we serve, in proactively managing privacy regulations and risks internationally.

• Provides strategic legal guidance and counseling, on a broad spectrum of privacy and data protection issues, with an emphasis on student data privacy, including relevant U.S. federal and state laws, international laws, compliance obligations, AI, data privacy in contracts, etc.
• Supports the ongoing development and implementation of the Company’s global data protection and privacy program in accordance with applicable laws and regulations.
• Partners closely with stakeholders and provides subject matter expertise, advice, and trainings related to data protection legal and compliance obligations.
• Assists with and monitors compliance with the Company’s data protection and privacy policies, processes, and procedures.
• Raises awareness and helps create and deliver effective training and guidance to teams across the Company to promote best practices and drive a data protection and privacy-oriented culture.
• Assists with data governance and compliance efforts, such as preparing and overseeing Data Protection Impact Assessments (DPIAs), Data Sharing Agreements (DSAs), and other data protection and privacy compliance documentation.
• Provides subject matter expertise advice and support on the Company’s AI governance and compliance efforts in accordance with relevant regulations and best practices.
• Advises on appropriate technical and organizational measures to protect and safeguard personal data, with an emphasis on student data.
• Supports customer conversations as they apply to data protection, privacy and AI and assists with Company vendor contract diligence.
• Support the business and assist with other compliance matters and legal functions on an as needed, reasonable basis.

• Comprehensive knowledge of global data protection and privacy laws, with strong emphasis on U.S. state and federal student data privacy laws and best practices.
• Expertise in advising on complex data protection and privacy matters, particularly related to FERPA, COPPA, GDPR, etc.
• Ability to work cross-functionally with lawyers and non-lawyers, to establish effective solutions efficiently and in an amenable manner.
• Builds trust, emphasized collaboration and communication, and serves as a connector between business and legal.
• Translate legal advice into actionable guidance for stakeholders, often in line with prescribed timelines.
• Ability to apply risk-balanced, practical legal guidance to complex data protection and privacy questions, creative problem-solving and solution-finding skills, and agility and flexibility in an evolving and ever-changing environment.
• Superior analytical and research skills to complete assigned tasks and navigate challenging matters.
• Maintains confidentiality to the utmost degree.
• Takes independent action and calculated risks while asking for help as needed.
• Balances team and individual responsibilities while contributing to a positive working environment.

• LLB or Juris Doctor from an accredited law school,
• Enrollment with a State Bar Council under the Bar Council of India and/or passing the All-India Bar Examination, and/or member of the bar in good standing in at least one U.S. jurisdiction
• Five years of global data protection and privacy experience in a law firm or in-house position;
• Familiarity and experience with advising on student data and Ed Tech matters.

Pay Range – This role’s range is $110,500 - $196,500 . The wage range for this role takes into account the wider range of factors that Curriculum Associates considers in making compensation decisions based on our Compensation Philosophy. Actual base pay within that range will vary based upon several factors including, but not limited to, prior experience and relevant skill sets. At Curriculum Associates, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances for each case. This role is also eligible to participate in the company bonus plan. The Company recognizes that minimum wage varies by location and will ensure all compensation decisions comply with applicable state and local laws.
Benefits – Benefit eligible employees (and their families) are covered by medical, dental, vision, and basic life insurance. Employees can enroll in our company’s 401k plan and receive an employer match.Employees have access to a flexible vacation and sick policy in addition to twelve paid holidays and a winter office closure between Christmas and New Year's, as well as a number of additional perks and benefits.

Application deadline: October 29, 2025. This is subject to close earlier if there is a high volume of applicants or a qualified hire is made.

Less than twice per month to Company offices only.

Office environment.

Exempt

Individual Contributor

40

Criminal, annually.

Up to 2 hours annually