Manager - Data Privacy & Compliance

Zenoti provides an all-in-one, cloud-based software solution for the beauty and wellness industry. Our solution allows users to seamlessly manage every aspect of the business in a comprehensive mobile solution: online appointment bookings, POS, CRM, employee management, inventory management, built-in marketing programs and more. Zenoti helps clients streamline their systems and reduce costs, while simultaneously improving customer retention and spending. Our platform is engineered for reliability and scale and harnesses the power of enterprise-level technology for businesses of all sizes

Zenoti powers more than 30,000 salons, spas, medspas and fitness studios in over 50 countries. This includes a vast portfolio of global brands, such as European Wax Center, Hand & Stone, Massage Heights, Rush Hair & Beauty, Sono Bello, Profile by Sanford, Hair Cuttery, CorePower Yoga and TONI&GUY.

Our recent accomplishments include surpassing a $1 billion unicorn valuation, being named Next Tech Titan by GeekWire, raising an $80 million investment from TPG, ranking as the 316th fastest-growing company in North America on Deloitte’s 2020 Technology Fast 500™. We are also proud to be recognized as a Great Place to Work CertifiedTM for 2021-2022 as this reaffirms our commitment to empowering people to feel good and find their greatness. To learn more about Zenoti visit: https://www.zenoti.com

Summary:- The Manager- Data Privacy and Compliance will be responsible for overseeing the organization’s data protection and privacy strategy and its implementation to ensure compliance with all the applicable privacy laws and regulation across the geographies where organization is operating for ex. GDPR, DPDP, CCPA etc. The person will act as a subject matter expert on data protection, privacy and compliance matters ensuring that the company’s data processing, storage  and handling activities comply with the law, and advising on data privacy risks and issues.

Key Responsibilities:

• Develop and maintain a robust data privacy program that aligns with the global and local privacy law and regulation where we are operating.
• Monitor compliance with data privacy laws, internal policies and contractual obligations through regular audits and assessments.
• Serve as the point of contact for data protection authorities and individuals whose data is processed (Employees, customers, etc.).
• Draft, implement and update the organisation’s data protection policies and procedures.
• Ensure that data privacy policies are integrated into the organisation’s overall risk management and compliance framework.
• Develop and conduct data protection and privacy training program for employees and stakeholders.
• Promote data privacy awareness and culture within the organisation.
• Collaborate with IT, Business units, security teams to ensure data security measures are in place and effective.
• Manage data breach response processes, including notifications and remediation efforts.
• Stay current with changes in privacy laws and regulations and communicate these changes to the relevant stakeholders.
• Advise on contractual and legal matters related to data privacy, including data processing agreements.
• Conduct data privacy impact assessments (DPIAs) for new projects, systems or processes involving personal data.
• Identify and mitigate data privacy risks within the organisation.
• Manage and respond to data breaches and data subject access requests (DSARs).
• Enquire timely reporting of data breaches to regulatory authorities and affected individuals as required.

Qualifications and Skills:-

• Bachelor degree in law, IT, Business Administration or equivalent. A master’s degree or professional certification (e.g., CIPP/E, CIPM, CIPT) is preferred.
• Extensive knowledge of data protection laws, including the DPDPA, GDPR, CCPA and other global privacy laws.
• Strong Understanding of ISO 27001:2022 and ISO 3100.
• Minimum of 7 years of experience in data protection, privacy, compliance or a related field.
• Proven experience in developing and implementing data protection programs.
• Excellent analytical and problem-solving skills.
• Exceptional communication and interpersonal skills.
• Team player and ability to work independently.

Why Zenoti?

• Be part of an innovative company that is revolutionizing the wellness and beauty industry. 
• Work with a dynamic and diverse team that values collaboration, creativity, and growth. 
• Opportunity to lead impactful projects and help shape the global success of Zenoti’s platform. 
• Attractive compensation. 
• Medical coverage for yourself and your immediate family. 
• Access to regular yoga, meditation, breathwork, and stress management sessions. We also include your family in benefit awareness initiatives.  
• Regular social activities, and opportunities to give back through social work and community initiatives. 

Zenoti provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.