Privacy Manager - Digital Personal Data Protection Act

We are hiring!!

A Privacy Manager plays a critical role in ensuring compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act). The position involves overseeing privacy governance, implementing consent and notice frameworks, Policy & Procedures, managing grievance redressal, and acting as the single point of contact with the regulatory body.

Core responsibilities include conducting Data Protection Impact Assessments (DPIAs) for high-risk processing, monitoring compliance with retention and erasure norms, handling rights requests, and managing data breaches. The role also requires developing privacy policies, training employees, and embedding privacy by design in financial products and digital platforms.

Functional skills include deep knowledge of the DPDP Act and sectoral regulations (RBI guidelines, SEBI norms are additional), risk assessment, incident management, and familiarity with Technology, IT security controls, encryption, and data governance frameworks. Certifications like DCPP / DCPLA (DSCI), FDPPI privacy certification, CIPM, CIPP/E, and ISO 27001:2022 Lead Auditor, ISO 27701 Implementer are highly valued.

Education Background: Bachelor's / Master's degree in law, Cyber Security, Information Technology, Information System

Year of experience: 10 to 14 years of work experience

Soft skills: Strong communication to explain complex privacy concepts to business and tech teams, stakeholder management across compliance, IT, and operations, analytical thinking for risk mitigation, ethical judgment, and leadership to drive a privacy-first culture in a highly regulated environment.