Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract.
As a company, we constantly challenge what’s possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations.
Role Summary
We’re looking for an experienced and highly motivated individual to lead the operations for Rivian’s data privacy program. You’ll be responsible for all operational aspects of customer and employee privacy, managing customer disclosures, performing risk and compliance reviews of privacy initiatives, addressing customer inquiries, and conducting compliance reviews.
Responsibilities
The Director, Privacy will manage and continue to scale Rivian’s privacy operations worldwide. This individual will interface directly with corporate and operational leadership to develop, implement, maintain, and ensure a best-in-class data privacy programs.
Program Leadership & Governance
Lead and continuously scale Rivian’s privacy operations worldwide, partnering with corporate and operational leadership to maintain a best-in-class privacy program.
Manage Rivian’s privacy policies, procedures, controls, documentation, and guidance in consultation with the Privacy, Cybersecurity, and AI Legal teams.
Manage Privacy Steering Committee operations and serve as a member of cross-functional governance bodies such as Third-Party Risk Management and Cybersecurity Committees.
Update and maintain the Record of Processing Activities (RoPA) to ensure ongoing compliance with global privacy regulations.
Training, Awareness & Culture
Develop and deliver privacy training and awareness programs, including foundational training, role-based modules, and periodic events.
Actively promote the importance of data privacy across the organization via the Rivian Privacy Champions program and direct engagement with product and functional teams.
Product, Services & Customer Experience
Lead privacy reviews for new and changed products and services; prepare privacy impact assessments/data protection impact assessments together with business teams.
Advise on privacy disclosures and customer choices in Rivian vehicles, apps, and digital products.
Coordinate with teams managing Rivian website content with privacy implications (cookies, Privacy Hub, customer support articles).
Rights Requests, Inquiries & Operations
Manage privacy rights request processes and tooling consistent with legal requirements and industry best practices.
Work closely with Rivian’s Customer Support team to receive, track, and respond to privacy-related inquiries efficiently and consistently.
Compliance, Metrics & Tooling
Manage privacy compliance reviews and build metrics, dashboards, and reporting for senior management.
Pursue opportunities to leverage AI systems and other advanced tools to improve privacy compliance operations.
Drive the effective use of privacy tools (e.g., Ketch), data platforms (e.g., Databricks), and project/reporting systems to enable scalable, data-driven privacy operations.
Cross-Functional Partnership
- Work closely with Cybersecurity, Information Technology, Legal, the People Team, and other stakeholders to align on Rivian’s data privacy goals and implementation strategies.
- Serve as a trusted advisor to business leaders on privacy risk, trade-offs, and implementation options.
Qualifications
Required
-
Minimum 10 years of proven privacy operational experience in multinational, complex, fast-growing global organizations, preferably in technology or automotive.
Experience must be focused on privacy operations and risk management (not solely information security, data governance, or research).
Strong knowledge of applicable global data privacy laws and requirements, including CCPA/CPRA and GDPR, with the ability to identify emerging trends and evolving issues.
Demonstrated experience authoring and managing data privacy policies, procedures, training, and compliance documentation.
Hands-on experience preparing and managing privacy impact assessments / data protection impact assessments (PIA/DPIA) and AI-related privacy assessments.
Deep understanding of privacy principles and best practices and how to operationalize them at scale.
Strong knowledge of consumer marketing-related privacy risks, including website tracking and cookie management.
Proven ability to work independently with a deadline-centric, action-oriented mindset in a rapidly changing environment.
Outstanding written and oral communication skills, with a focus on clarity, conciseness, and responsiveness.
Strong analytical skills with extensive experience in metrics, dashboards, and data-driven reporting.
High proficiency with privacy tools (e.g., Ketch), Google Workspace, data analytics tools (e.g., Databricks), and project management/reporting platforms.
Demonstrated ability to work both independently and collaboratively in a dynamic, fast-paced environment.
CIPP certification required.
Ability to travel as needed.
A strong commitment to teamwork, collaboration, and professionalism.
Preferred
Experience in automotive, EV, or software-defined product environments.
Prior involvement in global product launches, connected vehicle platforms, or AI/ML-enabled services with privacy considerations.
Pay Disclosure
Salary Range for Irvine, CA-based applicants: $218,800 - $312,500 annually (Actual compensation will be determined based on experience, location, and other factors permitted by law).
Equal Opportunity
Rivian is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law.
Rivian is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at candidateaccommodations@rivian.com.
Candidate Data Privacy
Rivian may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes (“Candidate Personal Data”). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law.
Rivian may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian affiliates; and (iii) Rivian’s service providers, including providers of background checks, staffing services, and cloud services.
Rivian may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, the United Kingdom, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions.
Please note that we are currently not accepting applications from third party application services.