Privacy Manager

Overview

Bit Go is the leading infrastructure provider of digital asset solutions, delivering custody, wallets, staking, trading, financing, and settlement services from regulated cold storage. Since 2013, Bit Go has served thousands of institutions and millions of retail investors worldwide. This role partners with the Bit Go Legal Department to build a global privacy program and execute internal and external privacy needs and requests.

This role is full-time onsite at the New York City office.

• Run privacy request operations end-to-end
• Serve as the Data Protection Officer where required by law
• Lead the preparation and submission of mandatory data protection impact assessments (DPIAs) and/or privacy risk assessments (PRAs) to supervisory authorities when required by law
• Partner with Legal in lock step
• Build and maintain core privacy program governance (lean but audit-ready)
• Vendor and procurement privacy
• Personal data incident support
• Metrics and continuous improvement

• A single global intake and case workflow is live, with documented triage rules, deadlines, templates, and evidence retention
• Contractor reliance is materially reduced for routine privacy requests and program maintenance
• Data inventory and processing records are maintained and used in real workflows (requests, product reviews, vendor reviews)
• Privacy reviews are embedded into product and vendor change processes with predictable turnaround
• Executive-ready metrics exist and show improving cycle time and decreasing backlog

• 7 or more years with proven ability to build and run a privacy program with operational responsibility and hands-on execution of privacy requests at scale
• Demonstrated ability to operate as a high-autonomy individual contributor in a lean environment
• Strong experience partnering with attorneys and translating legal requirements into operational controls
• Working knowledge of global privacy regulatory expectations, including GLBA, GDPR, CCPA/CPRA, LGPD, PIPEDA, and how to implement them in practical workflows
• Strong technical fluency: systems, data flows, access control concepts, logging, and incident handling collaboration
• Oversee the formal creation and maintenance of the Record of Processing Activities (ROPA), including periodic review and updates to ensure GDPR Article 30 compliance (or equivalent local mandates)
• Excellent writing and documentation discipline (regulator-ready and audit-ready records)

• Prior experience formally serving as a Data Protection Officer
• Experience in financial services, payments, custody, or other highly regulated environments
• Experience building privacy workflows in ticketing and documentation systems and producing evidence packages for audits and regulators

• Competitive base salary, bonus and stock options
• 100% company paid health insurance for employee, partner and dependents
• Up to 4% 401k company match
• Paid parental leave, Paid vacation
• Free commuter/parking pass
• Free custom lunches, dinners and snacks
• Computer equipment and workplace furniture to suit your needs
• Great colleagues and inspiring startup environment