Data Privacy & Compliance Analyst
CornerStone Technology Talent Services
IT, Legal
Posted on Feb 5, 2026
Data Privacy & Compliance Analyst
Location: remote
Reports to: Data Privacy Manager or Data Governance & Risk Lead
Role Overview
The Data Privacy & Compliance Analyst is a hands-on role responsible for operationalizing data privacy, retention, and regulatory compliance controls across an enterprise data environment. This position ensures that personal, sensitive, and regulated data is properly identified, classified, retained, minimized, and disposed of in alignment with applicable regulations, internal policies, and organizational risk tolerance.
This role partners closely with Data Governance, Security, Legal, and Engineering teams to embed privacy-by-design and compliance-by-design into data platforms, analytics workflows, and operational processes, with a strong emphasis on automation and scalable tooling rather than manual enforcement.
Key Responsibilities
Data Privacy Operations & Controls
• Implement and operate data privacy controls across structured and semi-structured data platforms
• Identify, classify, and tag regulated data (PII, PHI, NPI, PCI) across enterprise data assets
• Maintain records of processing activities (RoPA) and regulated data inventories
• Support privacy impact assessments (PIAs/DPIAs) and risk assessments for new or changing data use cases
Retention, Minimization & Disposal
• Operationalize data retention schedules by data domain, classification, and regulatory requirement
• Partner with data engineering and platform teams to implement automated retention and deletion controls
• Monitor and validate execution of data minimization, archival, and disposal processes
• Manage exceptions such as legal holds, investigations, and regulatory inquiries
DSAR & Individual Rights Enablement
• Support data subject access requests (DSARs), including access, correction, deletion, and portability
• Coordinate identity verification, data retrieval, response timelines, and audit documentation
• Partner with Legal and Customer Operations to ensure timely and compliant responses
Tooling & Platform Integration
• Configure and operate privacy and data discovery platforms such as Securiti, BigID, or Microsoft Purview
• Integrate privacy tooling with data platforms, catalogs, and security controls
• Ensure classifications, policies, and controls remain aligned across governance, privacy, and security systems
Monitoring, Reporting & Audit Support
• Monitor compliance posture and control effectiveness through dashboards and reporting
• Produce evidence for internal audits, external audits, and regulatory reviews
• Track issues, risks, and remediation activities related to privacy and compliance gaps
• Support continuous improvement of privacy controls based on audit findings, incidents, and evolving regulations
Required Qualifications
• 3–5 years of experience in data privacy, compliance, data governance, or risk management
• Hands-on experience operating privacy, data discovery, or compliance platforms
• Working knowledge of privacy regulations such as HIPAA, GLBA, CCPA/CPRA, GDPR, and applicable state privacy laws
• Understanding of modern data architectures, including cloud data platforms, analytics, BI, and SaaS systems
• Ability to collaborate effectively with Legal, Security, Data Engineering, and Governance teams
Preferred Qualifications
• Experience supporting healthcare and/or financial services data environments
• Familiarity with data retention, records management, and legal hold processes
• Exposure to data catalogs, lineage, and metadata-driven governance controls
• Experience using SQL, APIs, or automation to support scalable privacy operations
• Privacy or compliance certifications such as CIPP/US, CIPP/E, CIPM, or equivalent practical experience