About PhonePe:
PhonePe is India's leading digital payments platform with over 230 million registered users. Using PhonePe, users can send and receive money, recharge mobile, DTH, data cards, pay at stores, make utility payments, buy gold, and make investments. PhonePe went live for customers in August 2016 and was the first non-banking UPI app and offered money transfer to individuals and merchants, recharges and bill payments to begin with. In 2017, PhonePe forayed into financial services with the launch of digital gold, providing users with a safe and convenient option to buy 24-karat gold securely on its platform. PhonePe has since launched Mutual Funds and Insurance products like tax saving funds, liquid funds, international travel insurance, Corona Care, a dedicated insurance product for the COVID-19 pandemic among others. PhonePe launched its Switch platform in 2018, and today its customers can place orders on over 200 apps including Ola, Myntra, IRCTC, Goibibo, RedBus, Oyo etc. directly from within the PhonePe mobile app. PhonePe is accepted at over 11 million merchant outlets across 500 cities nationally.
The Culture:
At PhonePe, we take extra care to make sure you give your best at work, Everyday! And creating the right environment for you is just one of the things we do. We empower people and trust them to do the right thing. Here, you own your work from start to finish, right from day one!
The Company Benefits:
- Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance
- Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System
- Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program
- Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy
- Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment
- Other Benefits - Internal and External trainings, Higher Education Assistance, Car Lease, Mobile & Broadband Reimbursements, Salary Advance Policy
- ESOP- s
The Team:
The Privacy team at PhonePe ensures that data privacy and protection are embedded in PhonePe's product design and business processes that process personal data of customers, consumers, merchants and employees. The Privacy team is responsible for developing, implementing and monitoring a governance framework of policies and procedures, carrying out risk assessments conducting training and awareness programs, providing advisory to business, in partnership with business leaders, in order to (1) ensure compliance with applicable laws and regulations, (2) minimize the company's exposure to adverse events, (3) facilitate effective engagement with appropriate regulatory agencies (4) support a culture of innovation and (5) work closely with the Company's third-party services providers to ensure alignment with the Company's contractual commitments.
The Role:
We would love hear from you, if you are enthusiastic to work with industry leading tech that impacts millions of Indians and are passionate to provide business solutions to develop products and services which are privacy compliant. You will be responsible to develop, implement and monitor technology solutions and processes to ensure privacy by design requirements are met. You will be closely working with cross-functional teams including product, tech, engineering and analytics- teams within PhonePe. The Senior Manager, Privacy will be a senior member of PhonePe Group's Privacy team under the Ethics and Compliance function and will report to the Director - Subject Matter Expert, Privacy.
The Responsibilities:
The Senior Manager - Privacy will be responsible for the following:
A) Privacy Program Management:
- Review and contribute to the development of the privacy program framework on an ongoing basis ensuring it meets regulatory and industry standards
- Manage and maintain data mapping and data flow across existing and new entities
- Maintain an updated data inventory in line with the company's data classification requirements including review/update of the current guidelines
- Assess group level privacy program requirements/new initiatives and ensure the program development at PhonePe meets all the requirements
B) Implementation and Monitoring:
- Continually and closely engage with technology and business stakeholders to ensure privacy by design is considered at every stage of the product development, service offering and third-party engagement
- On ongoing basis conduct audits for implementation of policies and procedures across applications and business functions
- Conduct Privacy Program Reviews on a quarterly basis with gap analysis
- Ensure remediation plans are in place and implemented with regular follow-ups with stakeholders
- Conduct Data Protection Impact Assessments on various products and services
- Perform due diligence on contracts working closely with the legal team
- Monitor Privacy by Design requirements across PhonePe's products and services meeting Risk Assessment and Monitoring requirements laid down at the group level
- Actively support other teams during regulatory inspections and reviews, interactions with government and all other regulatory bodies on privacy matters
- Manage M&A activity from a privacy standpoint including advice to stakeholders, privacy gap analysis of acquiring entity and ensuring privacy compliance adherence in line with PhonePe's privacy program
- Provide regular reports and updates on the state of privacy highlighting risks and actions undertaken and planned
- Review privacy training implementation on an ongoing basis
- Manage end-to-end implementation and management of privacy tool at the group level
C) Training:
- Design awareness and training materials for business stakeholders regarding data privacy requirements applicable to PhonePe's products and business lines
D) Advisory:
- Advise business stakeholders on Privacy by Design vis-a-vis the legal requirements
- Work closely with legal to advice on existing and upcoming regulatory requirements
The Ideal Candidate:
- Graduate in IT with knowledge of law, data privacy and financial products/services with excellent academic credentials
- 10+ years of work experience in implementing, managing and monitoring compliance programs preferably as an individual contributor in large financial organisations
- Work experience must include 5+ years of experience implementing, managing and monitoring a privacy program, the technical controls, conducting risk assessments, privacy compliance audits, designing/developing solutions for privacy issues, including consumer and employee privacy
- Demonstrated experience of developing privacy compliant mobile applications with products and services especially, financial products
- Demonstrated knowledge and experience applying data privacy requirements including IT Act and Rules, upcoming Indian Privacy Act, mandates on privacy and data sharing by RBI, SEBI, NPCI, IRDA and other regulatory bodies in India as applicable to PhonePe
- Should be able to have technical discussions with business teams including product, tech, engineering and analytics teams
- Global privacy-related certifications including but not limited to CIPM, CIPT, CIPP/E, CIPP/US, CIPP/A from IAPP or CISSP, SSCP from ISC2 or ISO 27001 related certifications
- Should be able to independently manage business stakeholders and team members
- Ability to multi-task and work to provide business solutions at speed
- Excellent command of spoken and written English
- Strong presentation, report writing and facilitation skills
Desired skills:
- Advanced degree in IT or Law
- Experience working in global organisations in multi-cultural environments
- Experience implementing global privacy programs for multi-national companies
- Demonstrated experience of working on privacy tools like OneTrust or related tool certifications
Didn’t find the job appropriate? Report this Job