At a Glance
- Tasks: Lead data privacy initiatives and ensure compliance across digital platforms.
- Company: Join Condé Nast, a global media powerhouse with iconic brands.
- Benefits: Competitive salary, diverse workplace, and opportunities for professional growth.
- Other info: Fast-paced role with excellent career advancement potential.
- Why this job: Make a real impact on data governance in a dynamic media environment.
- Qualifications: 3+ years in data privacy or governance; strong technical skills required.
The predicted salary is between 55000 - 65000 £ per year.
Condé Nast is a global media company producing high‑quality content for more than 1 billion consumers worldwide.
It owns iconic brands such as Vogue, GQ, Vanity Fair, Wired, Allure and many others.
We are looking for a
Data Governance & Privacy Analyst based in London, GB.
Purpose
The Data Governance team supports Technology and Legal in initiatives that increase trust in and utility of data at Condé Nast, ensuring internal and regulatory compliance while driving operational excellence.
Role Overview
The Data Governance & Privacy Analyst will work in a dynamic team responsible for delivering operational initiatives that drive data privacy and compliance.
Initial responsibilities involve contributing to the development and iteration of a roadmap for effective data mapping and lineage capabilities, establishing comprehensive and trustworthy repositories that align our understanding of information flows across Condé Nast and enable efficient handling of DSR, ROPA and DPIA documents.
Key Responsibilities
- Lead technical privacy reviews across websites, mobile apps and backend services; assess data collection, tracking technologies and third‑party integrations at code and network level.
- Own end‑to‑end data mapping; document and maintain accurate records of data flows, data elements, systems and vendors.
- Run compliance scanning and monitoring using tools such as Privado, Didomi and Observe Point; validate consent signals, tag behaviour and data transmission.
- Support consent management and review of consent platforms, ensuring correct implementation of consent modes and frameworks such as TCF.
- Handle data subject rights workflows, including intake, validation and fulfilment of DSARs, deletion and access requests.
- Prepare regulatory responses; produce clear documentation and support Legal and Data Protection teams in responding to regulators, audits and internal reviews.
- Conduct privacy risk assessments for new and existing products, features and vendors; recommend practical controls and track mitigation.
- Audit data processing and sharing; verify that analytics, advertising and third‑party data flows match declared purposes, contracts and consent states.
- Define and enforce data governance standards; maintain data classifications, naming standards and schema controls.
- Partner with Engineering, Product and Legal; translate regulatory requirements into technical tasks and verify outcomes.
- Maintain documentation and training; produce guidance on tracking, consent, data handling and privacy by design.
- Support vendor governance; review third‑party technologies, assess data collection and transfers, and ensure contracts meet privacy requirements.
- Required Skills & Experience
- At least 3 years of experience in data privacy, data governance or ad‑tech within digital media or platform environments.
- Strong technical understanding of how websites and apps work; ability to inspect cookies, tags, pixels, SDKs, APIs and JSON payloads.
- Proven experience conducting technical privacy reviews and audits, tracing data flows from front end to backend.
- Hands‑on experience with data mapping and records of processing; ability to maintain system‑level documentation.
- Working knowledge of consent management platforms and frameworks such as TCF.
- Experience supporting data subject rights processes, including DSARs, access, deletion and portability.
- Familiarity with compliance monitoring tools such as Privado, Didomi, Observe Point or similar.
- Strong knowledge of US privacy laws (CCPA, CPRA) and working knowledge of GDPR and other global frameworks.
- Experience in regulatory response and audit support, gathering evidence and documenting findings.
- Understanding of data governance practices, including schema design, data standards and classification.
- Clear communication skills, ability to explain technical data flows and risks to commercial, product and engineering stakeholders.
- Strong analytical skills, attention to detail and ability to investigate discrepancies in data collection and consent.
- Ability to manage multiple workstreams in a fast‑moving environment, maintaining structure, prioritisation and accuracy.
Condé Nast is an equal‑opportunity employer.
We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, age, familial status and other legally protected characteristics.
#J-18808-Ljbffr