As Senior Privacy Analyst, you will lead and deliver key projects and business as usual activities that allow us to scale and mature our Privacy Program. You should be passionate about privacy and comfortable partnering up with Privacy Counsels, Product Managers, Engineers and Business Partners in projects that have both legal and business impacts. The job will entail getting deeply involved in ensuring that Spotify’s offerings are crafted, built and maintained in a way that follows applicable data privacy obligations around the world.
This role sits within Spotify’s Privacy team, which consists of Privacy Legal and Privacy Program Management. As a Senior Privacy Analyst you will be part of the Privacy Program Management team, reporting to the Privacy Program Manager, but will also be working closely with Privacy Counsels.
The right applicant will understand the need to balance excellent legal compliance with a proactive, business-friendly and technically sound approach to the challenges of being part of a fast paced, highly data-driven digital organization. We are looking for someone who can understand and interact with senior levels of the organization while having a command of the technical details and requirements of privacy daily. Come join the band!
\n
What You'll Do- Take full end-to-end ownership of certain Privacy Program areas, constantly improving efficiency and independently driving initiatives in those areas.
- Collaborate with teams across Spotify to develop and improve our program.
- Develop and optimize processes that align with business objectives and drive continuous improvement.
- Draft, implement and communicate policies and guidelines related to Spotify’s privacy practices.
- Offer strategic advice around privacy implications of using personal data, primarily around product and technology improvements as well as mentorship on ways to minimize privacy risks.
- Advocate the importance of privacy and conduct training and awareness raising exercises.
- Act as the directly responsible individual for various operational matters.
- Collaborate with internal stakeholders to respond to requests from regulators, law enforcement and customers.
Who You Are- At least 3+ years of experience in and solid understanding of privacy compliance and data protection. This includes knowledge of and background in multiple privacy program areas, like data subject rights, internal privacy policies, external privacy notices, training & awareness, records of processing activities, and data protection impact assessments.
- Demonstrated ability to work independently with minimal direction while optimally managing multiple projects and deadlines.
- Experience in running sophisticated projects and program management initiatives in an international organization, preferably within the technology industry. This includes delivering projects across multiple timezones and driving consensus across stakeholders whose interests may not always align.
- A self-starter with an eye for detail but also the ability to consider the big picture.
- Excellent interpersonal and communication skills, including the ability to explain complex privacy concepts to non-experts.
- Fluency in English is essential.
- Privacy certifications (like CIPP/E, CIPM and CIPT) and experience with OneTrust is a plus.
Where You'll Be- Hybrid role based in our Stockholm or London offices (average 2 to 3 days a week required)
\n