Key skills
GDPR compliancePrivacy impact assessmentsLegal researchPrivacy certificationData protection technologiesCompliance monitoringcommunicationProblem-solving mindsetOrganizational skillsAttention to detailTeam collaborationCCommunication
About this role
1Password is a leading cybersecurity company that is dedicated to building a safe and productive digital future. The Privacy and Data Protection Program Manager will be responsible for supporting the company’s global privacy and data protection programs, ensuring compliance with relevant data protection regulations, and collaborating with internal teams to implement effective practices.
Responsibilities:
- Support research efforts on privacy-related legal developments, regulatory changes, and enforcement trends
- Help analyze how changes in privacy laws may affect 1Password’s business operations
- Collaborate with the commercial legal team in drafting and reviewing privacy-related agreements, including data processing agreements (DPAs) and vendor contracts
- Monitor updates in data privacy laws and regulations and share insights with internal teams
- Assist in developing and implementing internal privacy policies and procedures that align with legal requirements and industry standards
- Help maintain accurate records of incidents and support compliance with the 1Password’s incident response plan
- Assist in preparing data breach notifications for regulatory authorities and impacted individuals, as required
- Review and assess third-party service providers’ privacy practices to ensure alignment with the 1Password’s data protection standards
- Advise on due diligence processes for onboarding new vendors, partners or customers, ensuring compliance with contractual and legal obligations
- Support the management and organization of vendor data processing agreements and related documents
Requirements:
- Bachelor's degree in Business, Legal Studies, or a related field; Juris Doctor from an accredited law school preferred
- Experience working with privacy regulations such as GDPR, PIPEDA, CCPA/CPRA, and other regional or industry-specific privacy laws
- 2-5 years of experience in a legal, compliance, privacy role, preferably in a company serving customers globally
- Experience conducting privacy impact assessments, audits, or compliance monitoring
- Strong attention to detail and ability to handle confidential information with discretion
- Excellent written and verbal communication skills, with the ability to explain complex legal concepts to non-legal stakeholders
- Problem-solving mindset and ability to work independently, as well as collaboratively within cross-functional teams
- Strong organizational skills and ability to manage multiple tasks simultaneously in a fast-paced environment
- Proficiency in legal research and privacy management tools
- Strong understanding of data protection technologies and information security principles (e.g., encryption, pseudonymization, access controls)
- Familiarity with IT systems, databases, and data flow mapping
- Ability to work with international teams and understand cross-border data transfer rules
- Work experience in Privacy, Data Protection, Compliance, or a related field for a te
- Privacy certification (e.g., Certified Information Privacy Professional (CIPP/C CIPP/US or CIPP/EU)