Product Manager - Compliance & Privacy

Location: Indonesia (100% Remote)
Function: Product Operations
Reports to: Director – Product Operations / Compliance

We at Demandlane are looking for a Product Manager – Compliance & Privacy to lead our global compliance initiatives across marketing, communications, and data operations. This role combines regulatory understanding, operational rigor, and product thinking — designing the systems, processes, and tools that keep our customer communications compliant with FTC, TCPA, state mini-TCPA, CAN‑SPAM, and related privacy laws.

You’ll manage the Compliance & Privacy team, oversee audits and process automation, and work cross‑functionally with Engineering, Product Ops, Marketing, and Call Center Operations to ensure full adherence to evolving regulatory frameworks.

Demandlane is a Silicon Valley based company focused on case acquisition for lawyers. Specifically, we focus on mass tort case acquisition, leveraging AI to improve case acquisition. We have a team of senior product, marketing, and engineering leaders from Silicon Valley, India, Indonesia, Nigeria and Romania with proven experience in launching successful products. We provide a fast‑paced environment, work on many exciting problem areas, offer opportunities to learn and grow, and offer excellent pay based on performance. We are a remote‑first team spread across many cities in India, Romania, Indonesia, Nigeria and the US.

Manage the Compliance & Privacy team, including analysts and auditors.

Lead monthly Compliance Committee meetings to review status, discuss new threats, and identify opportunities for stronger controls.

Build and maintain Compliance Policies, SOPs, and Internal Certification Programs to increase organization‑wide awareness.

Monitor updates to FTC, TCPA, and state‑specific laws (Florida, Oklahoma, Maryland, etc.) and drive changes across teams.

Develop and maintain compliance‑related tools and processes (e.g., DNC scrub systems, alert views, audit forms, and dashboards).

Translate regulatory requirements into Business Requirement Documents (BRDs) and collaborate with Engineering and Product Ops to implement them.

Ensure compliance systems remain accurate, automated, and bug‑free, with proper documentation and user training.

Generate weekly and monthly compliance reports, risk dashboards, and non‑compliance artefacts.

Oversee adherence to TCPA and mini‑TCPA dialing laws, ensuring:

• Calls and texts occur only within legal hours and frequency limits (8 AM–9 PM or stricter state rules).
• No more than three contact attempts per day per consumer.
• Dialer and SMS systems are configured for compliant time zones and throttling.

Ensure SMS and email compliance, including:

• Clear opt‑out options (STOP/unsubscribe links).
• Immediate suppression of opted‑out contacts.
• Honest sender identification, subject lines, and physical address inclusion.

Oversee Press‑1 and automated call compliance, including consent tracking and pre‑recorded message disclosures.

Conduct daily and weekly manual audits of campaigns and assets.

Identify non‑compliant behaviors and create Corrective and Preventive Action (CAPA) plans.

Work with Product, Ads, and Engineering teams to implement and validate fixes.

Maintain detailed audit trails, proof‑of‑consent records, and documentation for internal and external reviews.

Analyze impact of CAPA implementations to ensure long‑term risk mitigation.

Maintain alignment with U.S. federal and state privacy standards and international data protection best practices.

Collaborate with Engineering on data minimization, retention, and access controls for compliance assets.

Conduct periodic privacy reviews for new features or campaigns.

Stay current with evolving compliance and privacy landscapes through webinars, certifications, and external training.

Conduct internal workshops to educate cross‑functional teams on compliance best practices.

Represent Compliance in cross‑departmental projects to ensure proactive integration of regulatory principles.

Bachelor’s degree in Business, Law, Information Systems, or related field.

5+ years of experience in Compliance, Risk Management, or Product Operations, preferably in tech, SaaS, or marketing ecosystems.

Familiarity with FTC, TCPA, CAN‑SPAM, and U.S. state‑level telemarketing and privacy laws

Experience working with or managing call center, CRM, or marketing automation tools (e.g., Twilio, HubSpot, Five9, or similar).

Strong understanding of data compliance systems and auditing frameworks.

Excellent skills in process design, BRD creation, and cross‑functional project management.

Analytical mindset with experience in reporting, dashboards, and compliance metrics.

Strong written and verbal communication skills in English.

Proven ability to influence and collaborate across teams and time zones.

Build a compliance product framework that protects millions of customer interactions.

Work at the intersection of product, data, and regulation in a global tech environment.

Be part of a team that values proactivity, transparency, and ownership.

Competitive compensation, remote flexibility, and professional development support.