Lead and mentor a small privacy team, setting priorities, reviewing deliverables, and ensuring alignment with the organization's privacy strategy
Foster a culture of accountability, professional growth, and proactive risk management within the privacy function
Drive the operational implementation of the organization's data privacy framework and related policies
Manage data protection registers, privacy impact assessments, privacy risks, and Records of Processing Activities (RoPA)
Ensure ongoing compliance with applicable data protection regulations
Develop and maintain Data Processing Agreement (DPA) templates and oversee their implementation
Monitor regulatory developments and recommend practical actions to maintain compliance
Oversee and manage Data Subject Request (DSR) processes
Support teams in applying privacy-by-design and privacy-by-default principles across projects and products
Manage incident response processes for personal data breaches, including documentation, assessment, and regulatory notifications
Conduct and coordinate privacy audits and vendor risk assessments
Act as a key point of contact for internal and external stakeholders on data protection matters
Deliver privacy training and awareness initiatives across the organization
Requirements
Bachelor's degree in Information Management, Law (with focus on Data Protection/Privacy), Data Science, or equivalent experience
5+ years of experience in data privacy, information security compliance, or a related field
Experience leading or mentoring a small team
Strong working knowledge of GDPR, CCPA, and at least one additional privacy framework
Understanding of AML/KYC requirements and online gaming data regulations
Experience implementing privacy programs, conducting DPIAs, and managing DSR processes
Familiarity with privacy management and data governance tools
Strong communication and stakeholder management skills
Ability to translate legal and regulatory requirements into practical business processes and technical controls
Professional privacy certifications such as CIPP/E, CIPM, or CIPT are preferred #LI-REMOTE
What Makes Us Great:
Comprehensive compensation
Work-life balance initiatives
Autonomy - we embrace personal freedom and responsibility
Creativity - we are open to new ideas of how we can be better
Growth - we want you to develop personally as well as professionally
Top-notch professionals who are passionate about what they do
People-oriented environment and supportive atmosphere
Be at the forefront of this ground-breaking industry! Apply now!
Rush Street Interactive uses AI-assisted tools at select stages of the hiring process to enhance efficiency, consistency, and communication. AI does not make hiring decisions - final decisions are made exclusively by our recruiting and hiring teams.
Benefits
Remote work options
Additional Information
Rush Street Interactive (NYSE: RSI) is a market leader in online casino and sports betting, currently operating real-money gaming with our brands: BetRivers.com, PlaySugarHouse.com, and RushBet.co. We're building bridges between online, social and land-based gaming businesses to create amazing, integrated experiences that keep players in the game.
We're looking for an experienced Data Protection Manager to ensure compliance with the data protection laws and regulations applicable to the organization. You will act as the subject matter expert on data privacy and will oversee the entire data protection program. This role works closely with the business areas, taking an active role in implementing the compliance and governance program, and will balance tactical execution with strategic oversight, ensuring privacy controls are built into our systems, processes, and embedded in our culture.
Rushstreetinteractive · Europe