Head - Data Privacy

This Job Role addresses the following activities

Designing, implementing and maintenance Data Privacy Program for Enterprise Data Privacy Laws & Regulations- Globally Privacy Enhanced Technologies Data Privacy Grievance Handling Data Privacy Compliance

Job Accountabilities Lead the development and implementation of comprehensive privacy frameworks and strategy for the group and individual businesses like retail, healthcare, schools etc., while ensuring alignment with global regulations and business objectives. Lead Digital Personal Data Protection Act (DPDPA) compliance for all businesses, including data mapping, consent mechanisms, and cross-border data transfer frameworks Establish and maintain Privacy Information Management System (PIMS) certification for various businesses, integrating privacy controls with ISO 27001 information security management Serve as the main point of contact within the organization for staff members, regulators, and relevant public authorities on issues related to data privacy and data protection. Ensure that company’s Data protection processes are in compliance with IT Act 2000, DPDP Act 2023, DPDP Rules 2025, GDPR and other global laws, as applicable. Evaluate the existing data protection program to identify areas of no or partial compliance and rectify issues, if any. Oversee PIAs for new initiatives, technology implementations, and data processing activities across diverse business units Manage data breach response, privacy violation investigations, and regulatory reporting with cross-functional coordination Draft new and amend existing internal data protection policies, guidelines, and procedures, in consultation with key stakeholders. Conduct privacy due diligence, implement contractual requirements, and monitor third-party data processing activities Develop tailored privacy education programs for employees, executives, and partners across different industry contexts. Liaise with Legal, Compliance, IT and Cyber Security teams for ensuring data privacy processes are embedded in co-ordination with each business unit Evaluate and implement privacy-enhancing technologies, data minimization tools, and privacy-preserving AI/ML solutions · Deliver privacy metrics, risk assessments, and compliance status to board members while leading privacy governance committees

Competencies Extensive experience in architecting and governing enterprise-wide data protection and privacy compliance frameworks and privacy program. Sound understanding of the Indian and global regulatory landscape, specifically the IT Act 2000, DPDPA 2023, DPD Rules 2025, and GDPR. Proven track record in leading the end-to-end execution of complex data privacy projects and large-scale implementation programs. Prior experience in the deployment and management of privacy technologies across complex, multi-sector and large-scale business environments. Experience of reporting on privacy risk posture, trends, and compliance health to senior management and board-level leadership · Strong project management capabilities, with the ability to lead cross-functional teams through complex, multi-year regulatory transitions. Experience in a legal, audit, or risk management role is preferred. Ability to work effectively under pressure and to manage sensitive and confidential information. Excellent verbal and written communication skills, with strong attention to detail

Key Attributes (Experience and Qualifications) BE/B.Tech/ME/M.Tech/MCA/MS/LLB/LLM from a reputed/recognized institute Minimum 12–15 years of professional experience across Compliance, Legal, Risk Management, or Cybersecurity, with at least 5 years of proven leadership in designing and executing Data Privacy programs for large enterprises or conglomerates. Law degree from an accredited law school is preferred Hold at least one Data Protection and/or Privacy certification such as, CIPM, CIPP, CIPT etc. (preferred). Should have experience of handling a large team. Excellent verbal, written communication and presentation skills Personal drive and positive work ethic to deliver results within tight deadlines and demanding situations Ability to comprehend tasks with high complexity and create execution plans for review by DPO and deliver with minimum supervision Ownership mind-set and should demonstrate persistence in following up on tasks to be performed by other stakeholders so that project timelines can be met