PrivacyTech Business Analyst

Technical Business Analyst/PrivacyTech (OneTrust/Sourcepoint)

Technical Business Analyst with deep experience in privacy technology (PrivacyTech) platforms, particularly OneTrust, Sourcepoint or similar.

You will act as the key liaison between business stakeholders, compliance, and engineering teams, ensuring privacy solutions are effectively designed, implemented, and maintained to meet regulatory, operational, and customer expectations.

Key Responsibilities

• PrivacyTech Solutions
• Act as the functional and technical lead for PrivacyTech tools, primarily OneTrust (for data mapping, assessments, cookie compliance, DSARs) and Sourcepoint (for consent management and preference centers).
• Manage tool configurations, workflows, integrations, and updates to align with evolving privacy regulations and internal policies.
• Requirements Gathering & Analysis
• Collaborate with stakeholders across Legal, Security, Marketing, Risk, Product, and Engineering to gather and analyze business requirements for privacy initiatives.
• Translate regulatory requirements (GDPR, CCPA/CPRA, DMA, etc.) into functional and technical specifications.
• Implementation & Integration
• Support end-to-end implementation of privacy management tools, including API integrations, tagging, data inventory automation, and consent signals.
• Partner with development teams to integrate privacy controls into digital platforms, web, and mobile applications.
• Governance & Reporting
• Develop and maintain privacy compliance dashboards and reports using OneTrust modules.
• Ensure consistent data quality and documentation across systems and repositories.
• Continuous Improvement
• Monitor performance and user adoption of privacy tools, identify opportunities for enhancement, and manage change requests.
• Stay up-to-date with global privacy trends and PrivacyTech innovations to recommend future enhancements.

Experience

• 3-6 years of experience as a Business Analyst or Technical Analyst, ideally within data privacy, compliance, or digital technology domains.
• Proven hands-on experience configuring and managing OneTrust and Sourcepoint platforms.
• Strong understanding of privacy regulations (GDPR, ePrivacy, CCPA/CPRA, LGPD, etc.) and consent frameworks (IAB TCF).
• Familiarity with tag management systems (eg, Tealium, Google Tag Manager, Adobe Launch) and web technologies (HTML, JavaScript, cookies, APIs).
• Excellent skills in process mapping, requirements documentation, and stakeholder management.
• Experience with data governance, PIA/DPIA workflows, or data inventory automation is a strong plus.
• Strong communication and analytical skills with the ability to bridge technical and business discussions.

Qualifications

• OneTrust Certified Professional or equivalent certification.
• Experience with other PrivacyTech tools (eg, TrustArc, BigID, DataGrail).
• Knowledge of cloud environments (AWS, GCP, Azure) and data protection best practices.
• Exposure to MarTech, AdTech and consent-based personalization systems.

Outside IR35, Hybrid working, 1-2 days week on site in West London