VP, Data Privacy

About The Position

Requirements

• Bachelor’s degree required; technical degree preferred (e.g. CyberCybersecurity, Computer Science, Software Engineering) or related advanced degree preferred.
• 10+ years in privacy, data protection, or data governance, with 5+ in a senior leadership role (ideally in digital media, streaming, or subscription businesses).
• Active CIPP/US and CIPT certification required; CIPM, or relevant Cybersecurity certifications (e.g., CISM, CISSP) are a plus.
• Experience in developing and executing enterprise-wide privacy and data strategies, including data and privacy architecture.
• Extensive experience in building and leading cross-functional teams, collaborating with senior executives, business stakeholders, and product and technical teams.
• Deep, hands-on experience implementing and operating OneTrust at enterprise scale.
• Experience working with or within industry bodies or frameworks such as the IAB for digital advertising and privacy standards.
• Demonstrated expertise with:
• VPPA and its application to online/streaming video and viewing data.
• CPPA, CPRA and applicable U.S. state privacy laws as applied to targeting, cross-context behavioral advertising, and data governance.
• Data governance frameworks for enterprise data (customer, employee, operational, product, and analytics datasets).
• Knowledge of international data governance frameworks, data privacy and Cybersecurity regulations (e.g., GDPR) and AI ethics a plus.
• Ability to translate legal requirements and compliance needs into enterprise platforms, data /warehouses, identity systems, and streaming applications in coordination with data and software engineers, product and ad tech.
• Exposure to AI risk assessments / AI DPIAs, Training data governance, and Prompt and output data retention rules.

Nice To Haves

• Experience with ad tech, digital media platforms, SaaS, or consumer data products.
• Familiarity with programmatic advertising, analytics platforms, identity solutions, and data pipelines.

Responsibilities

• Define and lead the enterprise-wide data privacy and governance strategy, covering customer, employee, partner, product, and analytics data.
• Lead the development, implementation, and maintenance of technical elements of a unified data governance framework, including data classification, data lifecycle management, records of processing, data mapping and lineage, and data retention/archiving standards.
• Chair a cross-functional Data Governance or Privacy Council to ensure alignment between Legal, Cybersecurity, IT, Data, Ad Sales, Ad Tech, Analytics, Product, Engineering and other Business Units.
• Ensure that the privacy and data governance function is adequately resourced, ensuring the right people, processes, and technologies are in place to maintain governance standards across the organization.
• Act as the senior privacy authority for data collection, use, sharing, and retention across consumer-facing and internal systems
• Advise executive leadership on privacy risks and tradeoffs related to monetization, personalization, analytics, and data partnerships.
• Work with the Privacy Legal team members to identify and advise on potential privacy compliance gaps across the company, developing and implementing solutions to address the same.
• Own U.S. privacy compliance across federal and state regulations, especially relevant to streaming and digital advertising, including:
• Video Privacy Protection Act (VPPA).
• CCPA, CCPR and other state privacy laws and regulations that impact the collection, storage, use and sharing of personal information, including targeting, measurement, and data sharing.
• Collaborate with the Privacy Legal team to define, maintain and update enterprise privacy and data governance policies, standards, and guidelines ensuring compliance with data privacy laws and enforcement trends.
• Design and run enterprise privacy operations, including DSARs, DPIAs/PIAs, DSAs, workflows, vendor/third-party risk, and records of processing activities.
• Serve as the enterprise owner of OneTrust, leading configuration for data mapping, consent and preference management, cookie/SDK governance, assessments, and automated workflows.
• Develop and maintain privacy and data governance KPIs and dashboards for executive leadership.
• Collaborate with legal and business stakeholders to address rights, deletion and opt-out requests.
• Partner with Ad Ops, Product, and Data teams to assess privacy implications of new vendors, tools, and integrations.
• Oversee data-sharing and data-transfer risk, including cross-border considerations.
• Develop training and enablement programs tailored to technical and data-focused roles.
• Partner with ad tech, data engineering, and product to embed privacy-by-design into enterprise platforms, data /warehouses, identity systems, and streaming applications.
• Oversee requirements for collection and use of data for SVOD, AVOD, and hybrid subscription models, including ad targeting, attribution, personalization, and cross-device identity on CTV/OTT, mobile, and web.
• Ensure VPPA-compliant handling of viewing data and subscriber information, and in coordination with the Privacy Legal team, align state law opt-out/consent requirements with advertising and analytics implementations.
• Define privacy and governance controls for subscription lifecycle, account hierarchies/households, content recommendations, churn and retention analytics, and revenue operations.
• Implement controls for ad-supported streaming (AVOD/FAST), including consent management, profiling limits, universal opt-out mechanisms, and restrictions on sensitive data in advertising workflows.
• Coordinate with legal, tax, finance, and product teams where Colorado and other state laws treat streaming subscriptions and digital video differently, ensuring aligned data practices.
• Lead privacy incident and breach response in collaboration with Cybersecurity, IT, Legal, and Communications
• Assess and mitigate privacy risk related to emerging technologies (AI/ML, advanced analytics, identity resolution, clean rooms)