VP, Global Data & Privacy

DoubleVerify is a leading software platform for digital media measurement, data and analytics. DV’s mission is to be the definitive source of transparency and data-driven insights into the quality and effectiveness of digital advertising for the world’s largest brands, publishers and digital ad platforms. DV’s technology platform provides advertisers with consistent and unbiased data and analytics that can be used to optimize the quality and return on their digital ad investments. Since 2008, DV has helped hundreds of Fortune 500 companies gain the most from their media spend by delivering best in class solutions across the digital advertising ecosystem, helping to build a better industry. Learn more at www.doubleverify.com.

Reporting to the Chief Legal Officer, the VP, Global Data & Privacy will lead the DV Privacy Team and work closely with the Legal, Product, Information Security, Policy and Commercial functions to:

1. Monitor compliance and data practices to ensure the business and its products comply with applicable contractual obligations and privacy regulations, including GDPR, CCPA, CPRA, COPPA, and emerging AI privacy laws.
2. Enable innovation by advising the Product team on privacy and data use to enable DV to continue as the standard for the most secure, privacy-compliant, and independently evaluated media authentication company globally.
3. Drive AI Governance and adoption through frameworks for safe and responsible AI use that balance risk and business goals to drive the organization’s AI strategy 
4. Represent DV externally as a senior representative of DoubleVerify with respect to privacy and data use with industry associations, partners, customers in the digital advertising ecosystem, government organizations, and other privacy-influencing entities that impact the advertising industry.

The Global Data & Privacy Role will also be responsible for internal training, data protection impact assessments, internal audits, and will serve as the primary contact for supervisory authorities and individuals whose data is processed by the organization.

• Lead DV's global privacy program and partner with the Data & AI Governance Committee to develop, implement, and monitor privacy frameworks, principles, and standards at a strategic level
• Maintain and evolve privacy governance framework to manage data use in compliance with data privacy regulations (e.g., GDPR, CCPA, CPRA, COPPA) and emerging AI privacy laws), including developing templates for data collection, data mapping, vendor management reviews, and privacy impact assessments
• Maintain and update DV Global Privacy Policies to ensure ongoing compliance with the shifting legal and regulatory landscape of data protection
• Serve as Data Protection Officer (DPO) and primary point of contact for data protection authorities on all data protection related matters
• Serve as the primary point of contact for privacy and data use matters within the business

• Drive privacy-by-design and privacy-by-default practices in product development, ensuring minimal data exposure across development, staging, and production environments
• Review customer, partner, and vendor contracts with respect to data privacy requirements in partnership with Legal and Information Security functions, ensuring filing requirements with local regulators are achieved
• Able to represent DoubleVerify externally with customers and partners and effectively communicate and advocate DV’s privacy approach and solutions
• Conduct and oversee Data Protection Impact Assessments (DPIAs) for new products, features, and processing activities

• Monitor the global privacy regulatory landscape and assess impact of new and emerging laws on DV's operations
• Lead audits and processes to maintain and expand global accreditations and certifications (APEC CBPR, APEC PRP, ISO 27701, Data Privacy Framework) to meet business needs and serve our growing global customer base
• Develop and deliver privacy training programs to various business functions and collaborate with Information Security to raise employee awareness of data privacy and security issues
• Play a key role in cross-functional team that defines enterprise-wide AI governance roadmap, establish policies and frameworks for safe and responsible AI use and drives an organizational approach that balances innovation with accountability and compliance.
• Work with Information Security to maintain records of all data assets, data flows, records of processing activities, and vendor/subprocessor assessments
• Partner with the Information Security team to maintain and develop data security incident management plans and be a key member of the incident response team to ensure timely management and remediation of incidents, including impact assessments, breach response, complaints, claims or notifications, and responding to data subject access requests (DSARs)
• Ensure IT systems and procedures comply with all relevant data privacy and protection law, regulation, and policy (including data retention and destruction)

• Represent DoubleVerify's business interests externally with industry associations, partners, customers in the digital advertising ecosystem, government organizations, and privacy-influencing entities that impact the advertising industry
• Collaborate with DV’s Government Relations team on global regulations and industry frameworks impacting the business
• Participate in relevant industry groups to ensure DoubleVerify's products set the standard for privacy-forward solutions and DV has influence in industry and regulatory changes that impact the business
• Serve as liaison for data protection authorities, privacy regulators, and certification bodies
• Able to represent DoubleVerify externally with regulatory bodies, industry organizations, customers, and partners regarding key business matters

• Law degree (J.D.) from an accredited law school 
• Active bar membership
• Hold at least one Data Protection and/or Privacy certification such as CIPP/US, CIPP/E, CIPM, CIPT, or equivalent (preferred)
• 6-10 years of progressive experience in data privacy and protection, with at least 3-5 years in a leadership role
• Experience with U.S. and EU data privacy laws (GDPR, CCPA, CPRA, COPPA) and emerging AI privacy regulations
• Multiple years' experience within a compliance, legal, audit and/or risk function, with substantial experience in privacy compliance
• Experience in developing policy and compliance training programs
• Experience serving as Data Protection Officer or in similar senior privacy capacity preferred
• Background in technology companies, particularly in digital advertising, adtech, martech, or fraud detection industries strongly preferred
• Travel: Willingness to travel as needed for business purposes, including regulatory meetings, audits, industry conferences, and team collaboration

• Strong knowledge of EU and U.S. data privacy and data protection regulations (GDPR, CCPA, CPRA, COPPA), and good understanding of other major privacy frameworks and evolving legislation worldwide
• Understanding of AI/ML privacy considerations and algorithmic decision-making compliance requirements
• Sufficient knowledge of information technology and data management systems required; experience in the digital advertising space a significant plus
• Familiarity with privacy certifications and frameworks (APEC CBPR, ISO 27701, Privacy Shield/Data Privacy Framework)

• Well-developed and professional interpersonal skills; ability to interact effectively with people at all organizational levels of the firm
• Strong leadership skills and ability to scale DV’s privacy function
• Excellent writing and presentation skills, with ability to communicate complex legal concepts to technical and commercial stakeholders
• Ability to work unsupervised, exercise leadership, and influence change

• Experience working in a global organization and navigating multi-jurisdictional requirements
• Experience managing high-performing teams and leading team members as trusted partners by Product, Legal, and Commercial teams
• Strong project management skills and ability to lead cross-functional initiatives
• Ability to use independent judgment and discretion when making majority of decisions
• Ability to handle confidential and sensitive information with the appropriate discretion
• Strategic thinking with ability to balance legal compliance with business enablement

The successful candidate’s starting salary will be determined based on a number of non-discriminating factors, including qualifications for the role, level, skills, experience, location, and balancing internal equity relative to peers at DV. The estimated salary range for this role based on the qualifications set forth in the job description is between $185,000- $319,000. This role will also be eligible for bonus/commission (as applicable), equity, and benefits. The range above is for the expectations as laid out in the job description; however, we are often open to a wide variety of profiles, and recognize that the person we hire may be more or less experienced than this job description as posted.

Not-so-fun fact: Research shows that while men apply to jobs when they meet an average of 60% of job criteria, women and other marginalized groups tend to only apply when they check every box. So if you think you have what it takes but you’re not sure that you check every box, apply anyway!