As our Data Privacy Compliance Manager you will lead the evolution of our global privacy program. You will ensure our data protection practices align with regulations such as GDPR, CCPA, and CPRA. This is a remote position in Brazil. You will report to our VP, Security, CSO. NOTE-to be considered for this position, please submit your resume in English.
Quais serão as suas responsabilidades:You will lead enterprise adoption of Privacy by Design, collaborating with engineering and product teams from brainstorming to launch.
You will manage core privacy operations, including:
Privacy Impact Assessments (PIA)
Record of Processing Activities (RoPA)
DSAR automation
Data classification and governance of unstructured data
You will define and track privacy KPIs and program using the NIST Privacy
You will partner with Vendor Risk Management on third-party privacy assessments.
You will help teams solve privacy challenges related to retention policies, test data, or third-party data flows—with pragmatic solutions.
You will support Data Governance in implementing and enforcing retention schedules.
You will grow and support Avalara's Privacy Champion Network to decentralize accountability and build a privacy-first culture.
You will maintain documentation and audit readiness for regulatory inquiries and external assessments.
You will contribute to privacy metrics development and automate reporting dashboards for visibility and transparency.
You will provide hands-on support and onboarding to build privacy know-how across the business.
You will participate in programs focused on responsible AI/ML data use, aligning with evolving regulations
Bachelor's degree in Law, Information Technology, Computer Science, or a related field.
Certifications: CIPM, CIPP/US, CIPP/E, CDPO/BR, CISSP, ISO 27001, or equivalent.
5–10 years of progressive experience in privacy, data protection, or compliance within tech, finance, or multinational sectors.
You have experience managing global privacy programs under frameworks like GDPR, CCPA, CPRA, LGPD, or UAE Privacy Laws.
- You have hands-on expertise with privacy operations: DSAR fulfillment, data mapping, PIAs/DPIAs, LIAs, and cross-border data transfers.
- 5+ years of experience in audits, third-party reviews, breach response, and privacy governance.
- You have proficiency in tools like OneTrust, Jira, GRC platforms, and privacy frameworks.
- You have knowledge of Privacy by Design, AI/ML governance, and policy design for latest tech.
- You have familiarity with cybersecurity and information governance standards (e.g., ISO 27001/27701, CIS Controls).
#LI-Remote
Total Rewards
In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.
Health & Wellness
Benefits vary by location but generally include private medical, life, and disability insurance.
Inclusive culture and diversity
Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.
O que você precisa saber sobre Avalara:
We’ve already built an industry-leading cloud compliance platform, processing over 54 billion customer API calls and over 6.6 million tax returns a year. Our growth is real - we're a billion dollar business - and we’re not slowing down until we’ve achieved our mission - to be part of every transaction in the world.
We’re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. We’ve been different from day one. Join us, and your career will be too.
We’re An Equal Opportunity Employer