Data Privacy Specialist

The Data Privacy Specialist will be responsible for overseeing and ensuring the institution’s compliance with privacy laws and regulations, focusing on both educational data privacy (such as FERPA) and general data protection standards. This position will lead the development, implementation, and maintenance of privacy policies and procedures to safeguard personal information and ensure compliance with state and federal regulations including FERPA, and other relevant privacy laws. Additionally, the Data Privacy Specialist will oversee records management and retention scheduling to ensure proper handling and disposal of institutional records.

1. Develops, implements, and manages the institution’s privacy programs to ensure compliance with federal and state laws, including  FERPA, and other relevant privacy laws.
2. Conducts privacy impact assessments and risk assessments to identify potential vulnerabilities and implement necessary protections.
3. Document non-compliant processing activities and develop strategies for bringing them into compliance.
4. Develops and enforces data governance policies to ensure data integrity, quality, and security.
5. Oversee ongoing dataset examination to ensure that only the minimum amount of personal data necessary is being processed.
6. Collaborates with cross-functional teams to ensure privacy considerations are integrated into all operational processes.
7. Monitors the institution’s data processing activities and ensure that the handling, storage, and transmission of personal data align with privacy regulations.
8. Coordinates with IT department to respond to privacy-related incidents, including data breaches, and ensure compliance with breach notification requirements.
9. Leads internal audits and reviews to assess the effectiveness of the privacy program and identify areas for improvement.
10. Serves as the point of contact for all privacy-related inquiries, incidents, and regulatory communications.
11. Conducts regular staff training on privacy policies and data protection principles, ensuring all employees are aware of their responsibilities regarding data privacy.
12. Stays current with changes in privacy laws and regulations, providing updates and strategic guidance to senior management.
13. Oversees privacy compliance related to student data, faculty and staff records, and third-party vendor agreements.
14. Fosters a culture of privacy awareness throughout the institution.
15. Develops and maintains records management policies and procedures to ensure proper handling, storage, and disposal of institutional records.
16. Sets and manages retention schedules for institutional records in compliance with legal and regulatory requirements.
17. Conducts regular audits of records management practices to ensure compliance and identify areas for improvement.

• Bachelor’s degree in information security, law, healthcare administration, or a related field.
• Three (3) years of experience in privacy management or compliance, preferably within an educational or healthcare setting.
• Strong understanding of FERPA or other relevant privacy regulations.
• Proven ability to conduct privacy audits, risk assessments, and incident investigations.
• Excellent communication and collaboration skills to work across departments.
• Strong analytical and problem-solving skills, with attention to detail.
• Experience in records management and retention scheduling.

 
PREFERRED QUALIFICATIONS: 

• Certified Information Privacy Professional (CIPP,CIPM) or related certifications.
• Experience in a higher education environment.
• Familiarity with data governance frameworks and best practices in the education sector.
• Master’s degree in information technology, law, or a related field is a plus.

The College reports all positions to the Department of Work Force Services, posts all positions on the website:  http://www.davistech.edu/hr, and posts hard copies of all announcements in the Human Resource Office.  You can request a copy in room 1081.  The Davis Applied Technology College complies with all aspects of the ADA and section 504 of the Rehabilitation Act. Any applicant requiring accommodations in the application process must contact the Human Resource Office. Requests should be made three days prior to need.
 
APPLICATION
To be considered for employment you must meet the minimum qualifications of the position, submit an EMPLOYMENT APPLICATION, RESUME and COVER LETTER before the closing date. All applicants will be evaluated and ranked on the basis of relevant experience as stated therein. Highest ranking applicants may be invited for a personal interview. Apply online at www.davistech.edu/hr 
EOE

Salary : $71,271 - $84,635