Head of Data Privacy & Compliance
Vietnamworks' Client
Job Description
Location: Hanoi
Reports to: Standing Deputy CEO / CEO
Job overview
The Head of Data Privacy & Compliance / Director of Data Privacy & Compliance will lead the organization’s data protection, privacy, and compliance function, acting as a strategic partner to senior leadership in ensuring regulatory compliance while enabling sustainable business growth.
This role requires deep, hands-on expertise in GDPR implementation, a strong legal or compliance foundation, and the ability to advise on corporate compliance standards such as SOX. The role works closely with Legal, IT Security, Risk, Audit, and Business Units to embed privacy-by-design and compliance-by-default across the organization.
Data Privacy & Compliance Strategy Leadership
• Lead and oversee all data privacy, GDPR, and compliance initiatives across the organization.
• Act as a strategic advisor to executive leadership on data protection, privacy risks, and regulatory compliance.
• Establish and continuously improve privacy and compliance frameworks aligned with business strategy and regulatory requirements.
• Build, structure, and develop
GDPR Implementation & Privacy Governance
• Develop, implement, and maintain privacy policies, procedures, standards, and documentation.
• Oversee Data Protection Impact Assessments (DPIAs), privacy risk assessments, and records of processing activities (RoPA).
• Ensure privacy-by-design and privacy-by-default principles are embedded into products, systems, and business processes.
Corporate Compliance & SOX Advisory
• Provide advisory and support to internal stakeholders on SOX compliance and related internal control frameworks, where applicable.
• Partner with Finance, Risk, Audit, and Legal teams to ensure alignment with corporate governance and compliance standards.
• Support internal and external audits related to data protection, privacy, and compliance.
Incident Management & Regulatory Engagement
• Lead the response to data privacy incidents, investigations, breach assessments, and regulatory reporting obligations.
• Serve as a key point of contact with external auditors, consultants, and regulatory authorities.
• Monitor regulatory changes, compliance trends, and industry best practices, proactively advising leadership on impacts and actions.
Training, Awareness & Compliance Culture
• Design and deliver internal training and awareness programs on data privacy, GDPR, and compliance requirements.
• Build a strong, organization-wide culture of data protection and regulatory compliance.
Required Qualifications
• Bachelor’s degree in Law, Compliance, Information Security, or a related field.
• Strong legal background or equivalent professional foundation in compliance, risk management, or corporate governance.
• Proven hands-on experience participating in or leading GDPR implementation projects.
• Experience working on or advising companies subject to SOX compliance is a strong advantage.
• Strong analytical, risk assessment, and problem-solving skills.
• Excellent communication and stakeholder management skills, with the ability to engage senior leadership.
• Ability to work independently and collaboratively in a fast-paced, evolving regulatory environment.
• Professional working English required.
Preferred:
• Prior experience working for a Big Four firm or a leading consulting organization in privacy, risk advisory, compliance, or audit-related functions.
• Experience working with large-scale, complex, or multinational organizations.
• Privacy or compliance certifications such as CIPP/E, CIPM, CIPT, or equivalent.
• Ability to balance regulatory compliance with business enablement.
Why You’ll Love Working Here:
• Lead and shape the data privacy & compliance strategy for a large-scale, data-driven organization.
• Work directly with senior leadership, auditors, and regulators.
• High-impact role with strong ownership, visibility, and strategic influence.
• Opportunity to build and scale a privacy & compliance function from a leadership position.
• Competitive executive-level compensation and benefits.
2a:{"skillName":"Communication English