Home
Recruiter
Log In

Senior Privacy Program Manager

Remote from
USA flagCanada flag
USA, Canada
Salary, yearly, USD
167,400 - 232,400
Department
Legal & Compliance
Employment type
Full Time,
Job posted
Apply before
24 Jun 2026
Experience level
Senior
Views / Applies
12 / 3
About company Share

About Mercury

Banking for startups: mercury.com

Verified job posting
This job post has been manually reviewed for authenticity and compliance.

AI Summary

Mercury is seeking a Senior Privacy Program Manager to build, operationalize, and embed privacy practices across the company. This role involves translating legal requirements into scalable systems, managing data subject rights, and training teams. The ideal candidate has deep privacy law knowledge and experience building privacy infrastructure. Mercury is a fintech company, and the role offers competitive compensation based on location.

Job Complexity

Easy Hard
AI Insight This role requires expertise in privacy laws, program management, and cross-functional communication, combined with the fast pace of fintech. It demands both technical and soft skills, making it challenging but not the hardest.

Salary Analysis

Median
USD199,900
US Market
USD130,000 – USD250,000
AI Insight The offered salary range of $167,400 - $232,400 is competitive for a Senior Privacy Program Manager in the fintech industry, especially for high-cost locations. The median of $199,900 aligns well with market data, though top talent may command higher.

Key Skills

Privacy Program Management Data Protection Laws Privacy Impact Assessments Vendor Risk Management Data Subject Rights Cross-functional Collaboration Project Management Training and Awareness Regulatory Compliance Fintech

I am writing to express my interest in the Senior Privacy Program Manager position at Mercury. With a deep understanding of privacy laws and a proven track record of building privacy infrastructure from the ground up, I am excited about the opportunity to help Mercury earn customer trust through robust privacy practices.

In my previous role, I successfully developed and implemented privacy procedures, managed data subject rights processes, and created training programs that made privacy intuitive for non-specialists. My project management skills allow me to run multiple workstreams effectively while gaining cross-functional buy-in.

I am particularly drawn to Mercury's mission of making trust possible and its commitment to respecting customer privacy. I am confident that my ability to translate legal requirements into operational systems will help Mercury move quickly without compromising privacy.

Thank you for considering my application. I look forward to the possibility of contributing to Mercury's privacy program.

Can you describe a time you built a privacy program from scratch? What steps did you take?
I started by conducting a data inventory and mapping data flows across the organization. Then I prioritized high-risk areas, developed a privacy impact assessment framework, and implemented vendor review processes. I also created training materials and worked with legal to ensure compliance with relevant regulations.
How do you handle a data subject access request (DSAR) in a complex data environment?
I first verify the requestor's identity, then locate all personal data using our data inventory and mapping. I coordinate with relevant teams to gather the data, review for any exemptions, and provide a response within the legal timeframe. I also log the request for tracking and improvement.
How do you stay updated on changing privacy laws and regulations?
I subscribe to regulatory updates from major authorities, participate in privacy professional groups, attend webinars, and use tools like OneTrust for compliance tracking. I also set aside time weekly to review changes and assess their impact on our program.
Describe a situation where you had to convince a team to adopt a privacy measure they were resistant to. How did you approach it?
I focused on explaining the business risk and customer trust impact in plain language, not just legal requirements. I provided examples of similar companies facing fines or reputational damage. I also offered to help implement the measure with minimal disruption, showing empathy for their concerns.
How would you prioritize privacy risks across different projects in a fast-paced environment like Mercury?
I use a risk-based approach, considering factors like data sensitivity, volume, regulatory requirements, and potential harm. I'd work with product and engineering teams early in the development process to integrate privacy by design. For urgent issues, I'd escalate and allocate resources accordingly.

In 1890, Samuel Warren and Louis Brandeis published an article called “The Right to Privacy” in the Harvard Law Review. They weren’t responding to a court ruling or a piece of legislation. They were responding to the gossip pages.

Boston’s newspapers had started printing details of private social events (weddings, dinner parties, the comings and goings of wealthy families) because instantaneous photography and new printing technology had made it cheap and easy to do so. The law had nothing to say about it. There was no remedy. The information was true, it had been observed in semi-public settings, and publishing it was legal.

Warren and Brandeis thought that was wrong. Not just impolite, legally wrong. They argued that individuals had a right that the law hadn’t yet named: the right, as they put it, to be left alone. Technology had outrun the rules, and someone needed to write new ones. Nearly every privacy framework that exists today traces its intellectual lineage back to this article.

Technology keeps outrunning the rules. We need to build frameworks that make trust possible. At Mercury, we know that earning customer trust starts with respecting their privacy.

This role is responsible for making sure our privacy program is operational, credible, and embedded in how we build. You’ll translate legal and regulatory requirements into systems, processes, and habits that actually work at the pace Mercury moves. And you’ll be the person who helps every team (product, engineering, data, marketing) understand what privacy means for their work, without slowing them down.

As part of the journey, we would expect you to:

  • Develop and update comprehensive privacy procedures and controls.
  • Stay abreast of privacy laws and regulations to ensure organizational compliance.
  • Evaluate and manage privacy risks associated with third-party vendors.
  • Manage data subject rights processes — DSARs, deletion requests, opt-outs — ensuring timely, accurate, and scalable responses.
  • Develop training, documentation, and awareness programs that make privacy intuitive for non-specialists across the company.

Some things that might make you successful in a role like this:

  • Deep understanding of privacy laws and regulations
  • Experience building or significantly improving privacy infrastructure (data inventories, PIA frameworks, and vendor review processes) from the ground up.
  • Strong project management instincts: you can run multiple workstreams without dropping threads, and you know how to get cross-functional buy-in without formal authority.
  • Clear, direct communication: your ability to explain privacy implications to engineers, executives, and customers in plain language.
  • Cool and collected in a tech-forward, fast-paced environment

* Mercury is a fintech company, not an FDIC-insured bank. Banking services provided through Choice Financial Group and Column N.A., Members FDIC. Investment advisory products and services offered by Mercury Advisory, LLC (“MA”), an SEC-registered investment adviser. MA is a wholly-owned subsidiary of Mercury Technologies, Inc..

The total rewards package at Mercury includes base salary, equity (stock options/RSUs), and benefits. Our salary and equity ranges are highly competitive within the SaaS and fintech industry and are updated regularly using the most reliable compensation survey data for our industry. New hire offers are made based on a candidate’s experience, expertise, geographic location, and internal pay equity relative to peers.

Our target new hire base salary ranges for this role are the following:

  • US employees in New York City, Los Angeles, Seattle, or the San Francisco Bay Area: $185,900 – $232,400
  • US employees outside of the New York City, Los Angeles, Seattle, or the San Francisco Bay Area: $167,400 – $209,200
  • Canadian employees (any location): $175,700 – $219,600 CAD

Mercury values diversity & belonging and is proud to be an Equal Employment Opportunity employer. All individuals seeking employment at Mercury are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, sexual orientation, or any other legally protected characteristic. We are committed to providing reasonable accommodations throughout the recruitment process for applicants with disabilities or special needs. If you need assistance, or an accommodation, please let your recruiter know once you are contacted about a role.

#LI-JB1

Apply now >

This job listing has been manually reviewed by the Jobicy Trust & Safety Team for compliance with our posting guidelines, including verification of the company's legitimacy, accuracy of job details, clarity of remote work policy, and absence of misleading or fraudulent content.

How to apply

Did you apply? Let us know, and we’ll help you track your application.

For safety tips, see our guides, and please let us know if you need any assistance.

Log in to save
You're almost done!

Create a free account with us to save a history of all jobs you've shown interest in.

You can also continue as a guest if you prefer.

Share

See a few more

Similar Legal & Compliance remote jobs

More Jobs

Job Search Safety Tips

Here are some tips to help you search and apply for jobs safely:
Watch out for suspicious jobs Don't apply for jobs that offer high pay for little work or offer to hire you without an interview. Read more ›
Check the employer's profile Make sure you're applying for a trustworthy job by visiting the employer's profile and learning more about them. Read more ›
Protect your information Don't share personal details like your bank account or government-issued ID on suspicious websites or messengers. Read more ›
Report jobs that feel unsafe If you see a job that seems misleading, inappropriate or discriminatory, report it for going against our policies and we'll review it.

Share this job

Jobicy+ Subscription

Jobicy

614 professionals pay to access exclusive and experimental features on Jobicy

Free

USD $0/month

For people just getting started

  • • Unlimited applies and searches
  • • Access on web and mobile apps
  • • Weekly job alerts
  • • Access to additional tools like Bookmarks, Applications, and more

Plus

USD $8/month

Everything in Free, and:

  • • Ad-free experience
  • • Daily job alerts
  • • Personal career consultant
  • • AI-powered job advice
Go to account ›