Data Protection Officer

Join Our Team at Paynamics Technologies Inc.

Company Description

As a BSP-licensed Electronic Money Issuer and Registered Operator of Payment Systems, Paynamics is a trusted leader in the fintech space.

We deliver end-to-end payment infrastructure that empowers every layer of the economyfrom SMEs and conglomerates to government agencies and financial institutions. Whether its payment acceptance, disbursement, or full wallet ecosystems, our modular platforms are designed to address the complexities of scale, compliance, and interoperability.

Through our secure and innovative technologies, we help shape and empower the Philippines digital landscapedriving financial inclusion, enabling digital transformation, and building a more connected, digital-first economy.

Job Title: Data Protection Officer

Location: Makati City

Job Type: Full-time

Work Set-up: Hybrid

Responsibilities:

A. Regulatory Compliance & Policy

• Monitor and interpret applicable data protection laws and regulatory guidance (e.g., Data Privacy Act, NPC Circulars).
• Develop, review, and maintain the companys privacy policies, procedures, standards, and privacy notices.
  
  
  

• Conduct Privacy Impact Assessments (PIAs) and risk assessments on processing activities, projects, products, and vendors.
• Collaborate with Product, IT, and Security teams to ensure privacy-by-design controls.
  
  
  

• Oversee or support data breach incident response, including investigation, containment, reporting, and notification to affected individuals and NPC within legal deadlines.
  
  
  

• Design and deliver organization-wide training on privacy principles, internal procedures, and regulatory updates.
• Promote a privacy-aware culture across departments.
  
  
  

• Perform regular audits and compliance checks to ensure adherence to internal and external requirements.
• Prepare compliance reports for senior management and regulators.
  
  
  

• Serve as primary liaison for NPC inquiries, complaints, audits, and enforcement actions.
• Respond to data subject access requests (DSARs) and other rights requests under privacy law.
  
  
  

• Maintain accurate records of processing activities (ROPA) and compliance artifacts.
• Review contracts and data processing agreements to ensure privacy provisions and safeguards are included
  
  
  

• Education: Bachelors degree in Law, Information Security, IT, Computer Science, Business, or related field. Advanced degrees (e.g., Juris Doctor or Masters in Privacy/Compliance) are advantageous.
• Experience: 3–7+ years in privacy, compliance, risk management, legal, or related roles; fintech or financial services experience preferred.
• Certifications (Preferred): CIPP/E, CIPM, CIPT, or NPC-approved DPO certification.
• Technical/Functional Skills:
• Strong knowledge of Philippine and international data protection frameworks (Data Privacy Act, GDPR).
• Risk assessment methodologies, DPIAs/PIAs.
• Incident management and breach reporting.
• Contract/data sharing and vendor compliance review.