About the role
Anthropic’s Integrity & Compliance (I&C) function is building the systems that let us scale responsibly as our products reach more people, more enterprises, and more regulated industries. Within I&C, the Privacy Programs pillar owns how we operationalize privacy across the company — from how we handle personal data in our products and research, to how we meet our obligations under GDPR, CCPA, and the growing patchwork of global privacy law. We work closely with our Privacy Legal team on all privacy‑related matters.
We’re hiring a Privacy Governance Lead to own the governance backbone of that work. You’ll set the strategy for how privacy governance operates at Anthropic, define the policies and controls that translate privacy principles into operating practice, and help manage the relationship with internal and external stakeholders who depend on that framework holding up under scrutiny.
This is a foundational role with significant scope. You’ll shape a privacy governance function from a relatively early stage, with the autonomy to set the standard and the mandate to drive cross‑functional change. You’ll partner closely with Privacy Legal, Security, Product, Research, and the wider I&C team, and you’ll contribute directly to reporting that reaches the Audit Committee and boards. You’ll report to the Head of Integrity & Compliance.
Key Responsibilities
Set the strategy and roadmap for Anthropic’s privacy governance framework, including the policies, standards, and internal controls that map to GDPR, CCPA/CPRA, and other applicable global privacy regimes.
Own the privacy documentation lifecycle end‑to‑end — Data Protection Impact Assessments, Records of Processing, Transfer Impact Assessments, and other accountability artifacts — including the methodology, the tooling, and the quality bar.
Establish governance forums and approval workflows for privacy‑significant product, research, and vendor decisions, and chair the forums where novel or high‑risk questions are resolved.
Own the privacy controls testing program: define what "good" looks like, set the testing cadence, and present results to the Head of Integrity & Compliance and other leadership forums.
Partner with Privacy Legal to anticipate emerging privacy law and translate new obligations into concrete control changes ahead of enforcement.
In partnership with Legal, co‑lead privacy regulator engagement on governance matters, including responses to inquiries, audits, and complaints.
Oversee the management of inputs for regulatory responses with the Privacy Program pillar.
Drive privacy training and awareness strategy for engineering, product, research, and go‑to‑market teams, calibrated to the actual decisions those teams make.
Represent the privacy governance function in Internal Audit reporting, and in cross‑functional risk and compliance forums.
Build and develop the privacy governance team over time.
Qualifications
Deep working knowledge of GDPR and at least one major US state privacy regime (CCPA/CPRA, or equivalent), including how their requirements translate into operational controls at scale.
Demonstrated track record building, scaling, or transforming a privacy governance program end‑to‑end — policies, DPIAs, ROPAs, controls libraries, governance forums, and the operating model that supports them.
Strong written communication, with the ability to produce clear policies, board‑ready reporting, and practical guidance that engineering and product teams will actually use.
Comfort owning hard cross‑functional decisions and operating across legal, technical, and operational boundaries.
A privacy certification such as CIPP/E, CIPP/US, or CIPM, or equivalent demonstrated expertise.
Preferred Qualifications
Senior privacy governance leadership experience at a technology company operating under multiple privacy regimes simultaneously, ideally including one with novel data processing (AI/ML, large‑scale platforms, or similar).
Direct experience engaging privacy regulators, particularly EU data protection authorities or the Irish DPC, on governance matters such as inquiries, audits, or complaints.
Familiarity with AI‑specific privacy considerations: training data governance, model memorization, output filtering, and the intersection with emerging AI regulation.
Experience standing up governance functions in a high‑growth environment, including building from a blank page.
Demonstrated experience presenting to Audit Committees, boards, or equivalent senior governance bodies on privacy matters.
Background that bridges privacy and broader compliance disciplines (security, regulatory, ABAC, enterprise risk management).
Role‑Specific Policy
Staff are expected to work from our Dublin office at least three days a week, though flexibility may be possible for an interim period.
Logistics
Minimum education: Bachelor's degree or an equivalent combination of education, training, and/or experience.
Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience.
Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position.
Location‑based hybrid policy: All staff are expected to be in one of our offices at least 25% of the time. Some roles may require more time in our offices.
Visa sponsorship: We sponsor visas where possible; we retain an immigration lawyer to support the process.
#J-18808-Ljbffr