About the position
We are seeking a Privacy Compliance Consultant to support an independent assessment of digital products against new state privacy regulations focused on children’s data (similar to COPPA and Age-Appropriate Design Code laws).
This role will evaluate how websites, apps, or platforms collect, use, and protect user data, with a focus on minors/children.
Responsibilities
• Conduct independent privacy assessments of digital systems (web/mobile)
• Review how user data is:
Collected
Used
Stored
Shared
• Perform privacy reviews (PIA/DPIA) and document findings
• Analyze data flows and data handling practices
• Evaluate:
Consent mechanisms
Age verification / age gating
Data minimization practices
• Identify privacy risks and compliance gaps
• Provide clear audit-style reports with recommendations
Requirements
• Experience with privacy regulations, especially:
COPPA (children’s privacy)
FTC privacy rules
State privacy laws (CPRA or similar)
• Hands-on experience conducting:
Privacy assessments / audits
PIA / DPIA
• Strong understanding of:
Data flows & data lifecycle
User data handling in web/mobile applications
• Experience reviewing:
Consumer-facing systems (apps, websites)
Consent, transparency, and privacy controls
• Ability to translate regulations into practical findings and recommendations
Nice-to-haves
• Experience with Age-Appropriate Design Code (CA or other states)
• Background in GRC, cybersecurity, or product compliance
• Certifications such as:
CIPP, CIPM, CISM, or similar