Skip Navigation

Compliance and Privacy Associate

Job ID R90915 Updated date 01/28/2020 Location Toronto, Ontario
161 Bay Street (93021), Canada, Toronto,Toronto, Ontario,

At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.                                               

Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.

Compliance and Privacy Associate

Roles and Responsibilities of the position include, but may not be limited to: 

  • Reports directly to the Privacy Office Manager and is responsible for the daily operation and administration of the Privacy Program

  • Tracks privacy metrics and prepares reports related to privacy to meet governance and business requirements

  • Serves as a privacy subject matter expert for the Personal Information Protection and Electronic Documents Act and provides consultation to all LOBs pertaining to privacy-related practices

  • Investigates, documents and responds to any privacy requests, complaints and inquiries in accordance with Capital One’s policies, standards, procedures and processes

  • Maintains Capital One’s privacy policy, privacy standard and other key policies, standards, procedures and processes. Evaluates, monitors and assess the ongoing adequacy of the documents in coordination with the LOB and legal department and recommends and executes on required updates and developments

  • Monitors compliance with Capital One’s Privacy Standard and other Enterprise policies, standards and procedures, identifying specific problem areas. Provides recommendations for improvements to enhance privacy compliance and implements approved initiatives

  • Identifies privacy risks in day-to-day operations, including within new and existing projects and programs. Works with the LOB to implement improvements to privacy compliance

  • Provides privacy incident guidance within the existing incident and events management process

  • Guides the business through Capital One’s privacy breach response plan to assist them in collecting and submitting the required information. Coordinates the privacy breach reporting process, supporting and providing consultation to the LOB on breach obligations

  • Maintains a database of privacy breaches in compliance with applicable privacy laws, regulations and guidelines

  • Manages audit requests (second and third line) and provides advice and guidance to the LOB on privacy related audit inquiries as necessary.

  • Works with the second line testing teams to include privacy audits to ensure compliance with Capital One’s privacy policies, standards, procedures and processes.

  • Supports the development and delivery of privacy training for the LOB

  • Keeps current on privacy trends, best practices and all guidelines and other documents issued by the federal Privacy Commissioner.

  • Inspires a compliance privacy culture, developing and leading approved initiatives to enhance privacy awareness throughout the LOB

  • Performs other Privacy, Governance and Compliance duties as may be assigned

The right candidate will have:

  • A demonstrated knowledge and experience in compliance with the Personal Information Protection and Electronic Documents Act, regulations and establishing best practices

  • Superior writing and editing skills with the ability to construct well-founded, clear, and concise analyses and recommendations

  • The ability to prioritize and manage multiple processes and projects at once

  • Experience in data mapping and data governance

  • Knowledge related to data privacy, information/cyber security and information risk matters

  • A proven record as a results driven individual who is comfortable working autonomously in a fast-paced evolving environment

  • The ability to communicate effectively with clients and within all levels of the organization, establish and maintain positive relationships and build teams.

  • Excellent attention to detail

Basic Qualifications: 

  • At least three years of professional work experience in the field of privacy

  • At least three years of experience working with the Privacy Act or PIPEDA

  • At least three years working experience in a regulated financial services organization or a highly regulated industry

  • Master’s or bachelor’s degree from an accredited college or university

Preferred Qualifications: 

  • CIPP(C) / CIPM designation or equivalent

  • Three years working experience in governance, risk, legal, audit, compliance, or in a second line of defense role

  • Experience working with regulators (OPC and OSFI)

  • Ability to adopt a risk-based approach in making recommendations to implement practical policies and procedures

  • Ability to work independently with minimal direction and in a team environment

Capital One Canada is an equal opportunity employer committed to fostering a diverse and inclusive work environment. We consider all qualified applicants and will meet the needs of those requiring reasonable accommodations.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital One's recruiting process, please send an email to

Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).