Privacy Compliance Program Specialist

Privacy Compliance Program Specialist

The Privacy Compliance Program Specialist will be part of the Global Legal Service Center (GLSC) and will support the Global Privacy Compliance Organization, which has central responsibility for developing and administering 3M’s global privacy compliance program.

The Privacy Compliance Program Specialist will report to the GLSC Site Manager and work closely with the Privacy Compliance Manager and Privacy Compliance Director to administer operational privacy compliance across our global organization. The Privacy Compliance Program Specialist is an experienced privacy professional with strong knowledge of data privacy frameworks, operational privacy risk management, and cross‑functional stakeholder engagement.

• Support Privacy Compliance leadership in the continuous improvement of the enterprise‑wide privacy compliance program.
• Oversee data subject requests processing and handling promptly, consistent with defined SLAs and regulatory requirements.
• Conduct data privacy and cross-border data transfer risk assessments, sensitive personal data protection impact assessments (DPIAs).
• Maintain the company’s personal data inventory and lineage, and regulatory records of processing activities (RoPAs).
• Under management oversight, participate in privacy‑related operational excellence and compliance projects as needed.

• Possess a bachelor’s degree in law with high academic credentials or related field from an accredited institution.
• Minimum of 4 years of experience in data privacy program management or related compliance field.
• Strong knowledge of global privacy regulations and frameworks (e.g. EU GDPR, Brazil LGPD, China PIPL, CCPA, and NIST Privacy Framework).
• Experience in operational privacy compliance program in complex, matrixed organizations.
• Strong analytical, communication, and project management skills.
• Ability to influence and collaborate with cross‑functional teams and key stakeholders.
• Ability to analyze systems for data privacy compliance concerns, and to understand and solve business problems while managing associated risks and compliance requirements.
• Strong organizational skills; ability to establish priorities, balance multiple tasks and deadlines at one time and effectively manage competing priorities.

• CIPP/US, CIPP/E, CIPM, or similar certifications strongly preferred.
  • Experience in the use and support of Privacy Governance, Risk and Compliance (GRC) platform, such as TrustArc, One Trust, Securiti, or other similar platforms.
  • Experience in Multinational Corporations in a similar field of expertise.

• In country relocation assistance is not authorized for this role.
• Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.