LinkedIn Share Twitter Share Facebook Share Email Share
Privacy Compliance Analyst London The Privacy Compliance Analyst will be responsible for supporting the strategic direction, development, and implementation of the data privacy programme at COMPASS.

COMPASS Pathways is a mental health care company dedicated to accelerating patient access to evidence-based innovation in mental health.  Our focus is on improving the lives of those who are suffering with mental health challenges and who are not helped by current treatments. We are pioneering the development of a new model of psilocybin therapy, in which our proprietary formulation of synthetic psilocybin, COMP360, is administered in conjunction with psychological support.

Reports to: The Privacy Compliance Analyst will report to Senior Corporate Counsel/DPO

Roles and responsibilities

  • Upkeeping data, processing impact assessments for all ongoing external relationships and ensures that the data flow map is updated accordingly
  • Reviewing, interpreting, drafting, and negotiating data processing agreements and other legal compliance documents and escalating issues to DPO
  • Assisting with the development, update, revision, and/or implementation of compliance policies and best practice procedures
  • Researching and analysing matters related to existing and new applicable regulatory requirements, including but not limited to GDPR and other applicable privacy compliance matters
  • Developing, coordinating, and participating in an educational and training programs that focus on the elements of the compliance program to help ensure that all employees and management understand applicable regulatory guidelines and company policies
  • Measuring effectiveness of compliance by conducting routine and focused audits of policy/procedure adherence and ensuring a compliance feedback/prevention process that uses the results of both internal and external audits and investigations to develop, revise and strengthen new and/or existing policies, procedures, and relevant employee training
  • Coordinating with other departments to gather information needed for regulatory reviews, validations, and audits
  • Managing multiple tasks simultaneously ensuring timely execution in a fast-paced environment
  • Undertaking administrative tasks, as assigned, for a small privacy team


  • A Bachelor’s degree is required. Privacy, security, or related degree preferred. Certification in privacy compliance is preferred (CIPP/US and/or CIPP/E)
  • Experience in privacy and/or managing privacy compliance program required
  • A successful candidate will possess strong organisational, coordination skills and interpersonal skills for facilitating cross-functional communications, the ability to gather, research, and analyse data, and finally work in an administrative capacity as needed
  • Strong working knowledge of GDPR privacy requirements. Knowledge of security frameworks preferred.
  • Excellent communication skills (written and verbal)
  • Able to read and interpret contracts and other types of legal documents
  • Must be a self-starter, flexible, results-oriented, a team player and be able to prioritise responsibilities

How to apply

If interested, please send your CV and statement of interest to

Equal opportunities

We are proud of our commitment to diversity and equality (pursuant to the Equality Act 2010). We do not discriminate based upon race, religion or belief, colour, nationality, ethnic or national origin, gender, pregnancy or maternity, marital or civil partner status, sexual orientation, gender reassignment, age or disability.

LinkedIn Share Twitter Share Facebook Share Email Share