Privacy & Compliance Specialist
Superpower
Job Description
Job Description
We are seeking a Privacy & Compliance Specialist to build and run Superpower's privacy and compliance program and accelerate our mission. We are looking for someone who cares deeply about protecting member health data, crossing t’s and dotting i’s, and can think at scale. Critically, you’re excited about joining a fast-growing startup (backed by some of the world's best healthcare investors) on a mission to provide everyone access to the world's best care. This role will own privacy and compliance end-to-end within our longevity and functional medicine model, ensuring that how we collect, use, and protect data and expand operations across 50 states remains safe, compliant, and built to move the business forward rather than slow it down.
Key Responsibilities
Build and run Superpower's privacy program end-to-end — data mapping and inventory, privacy notices, consent flows, and data subject / patient rights requests (access, deletion, correction).
Establish how Superpower collects, stores, processes, and uses member health data across EMRs, health information exchanges, genetic reports, wearables, and the AI-powered digital twin.
Run privacy impact assessments and privacy-by-design reviews for new products, features, and services (e.g., prescription peptides).
Manage vendor privacy diligence, data processing agreements, and Business Associate Agreements, and maintain the record of processing and data flows.
Own compliance frameworks and audit readiness (e.g., HIPAA Security Rule, SOC 2) — policies, controls, evidence, and remediation.
Run security and privacy awareness training and maintain the company risk register.
Respond to customer and partner security questionnaires and support due diligence for partnerships and fundraising.
Own incident response and breach assessment / notification workflows, in coordination with Engineering and leadership.
Advise Product and Engineering on practical guardrails for AI-driven clinical recommendations and member data use.
Track evolving state and federal privacy regulations — HIPAA, state health privacy laws (e.g., Washington's My Health My Data Act), CCPA/CPRA, and FTC health data rules — and translate them into concrete internal requirements.
Qualifications
5+ years in privacy and/or compliance, ideally in healthcare or another highly regulated, data-intensive industry, with hands-on experience running a privacy program.
Working fluency with HIPAA and modern privacy laws (state health privacy laws, CCPA/CPRA, FTC health data rules); familiarity with frameworks like SOC 2 a plus.
Ability to research and understand new regulatory requirements.
Independent operator that builds scalable frameworks rather than one-off fixes, flagging risks before they become blockers.
Strong judgment — able to distinguish real risk from theoretical risk, and to know when to escalate to counsel or leadership versus handle it directly.
Excellent communication skills and ability to translate complex privacy and compliance concepts into clear, actionable guidance for non-specialists.
Comfort with ambiguity, cross-functional collaboration, and building 0-to-1 infrastructure in a fast-moving, tech-enabled startup.
Self-starter with a can-do attitude and an ownership mindset — you don't wait to be told what to do.
Strong personal interest in longevity and preventive healthcare.
Privacy certification (e.g., CIPP/US, CIPM, CIPP/E, or CHPC) valued but not required.
No JD or bar membership; this is not a counsel role.
Commitment
Full-time.
In-person in San Francisco
Why Join Us
Be part of a mission-driven team redefining preventative, root-cause, and longevity-focused care.
Own privacy and compliance end-to-end and be known as someone who makes things possible — clearing the path so the team can move faster, not slower.
Build a modern privacy and compliance function from the ground up, with real ownership and impact beyond a traditional compliance role.
Work directly across Operations, Product, Engineering, Growth, and Clinical on a flat, high-velocity team.
Superpower is a new health system on a mission to extend and enhance human life.
We started with lab testing, then data aggregation / digital twin, then an AI doctor, and now peptides.
Over the past 6 months, we have grown 10x whilst halving CAC. Now we are gearing up for hyper growth.
You can find more about us below:
superpower.com/series -a
Superpower Overview
Culture at Superpower
Company Philosophies
We are all here to genuinely do our life’s best work
Insanely high talent bar, never settling. A players only (see Steve Jobs)
We live to work as much as we work to live. But we sustainably espouse the superpower ethos of putting health first
We aim to set the gold standard for team health culture on the planet — live the ethos!
Investors
Forerunner (Top consumer healthcare VC in the world; early board members of Hims and Oura; Kirsten, founder of Forerunner, led our Series A)
8VC (leading health and bio investor)
Evan Moore (Founder of Doordash; Partner at Khosla Ventures)
Cyan Bannister (early investor into Uber and SpaceX, former partner at Founder’s Fund, regarded as one of the top angels in the world)
Balaji Srinivasan (ex-Coinbase CTO and angel, ex-General Partner at a16z)
Arielle Zuckerberg (active angel, tech leader, relatively famous brother)
Cameron & Tyler Winklevoss
Susa Ventures (tier 1 healthcare VC)
Bond Capital (General Partner Jay Simons' early-stage fund within Bond)
Long Journey Ventures (investor in Uber, Notion, Loom, Affirm etc.)
Influencers
Shaan Puri (angel and podcast host of my first million)
Brooke Monke (50 million followers across socials)
Logan Paul
Steve Aoki
Justin Mares (founder of Truemed)
Giannis Antetokounmpo
Kylian Mbappé
We’re proud to be a global team and welcome talent from around the world. We offer visa sponsorship and can support relocation to the United States for the right candidates. Much of our team is international, and we’re committed to building a team of top-tier talent.
- Youcom is seeking a GRC Analyst to support the compliance function within our Security, IT, and Privacy team. This role focuses on managing compliance programs across key frameworks like SOC 2 and ISO 27001. The successful candidate will coordinate audit activities, conduct...SuggestedFlexible hours
- ...Protection) in San Francisco, California. Ideal candidates will have extensive experience with data protection legal frameworks and privacy compliance. The role requires 5-6 years of experience in regulatory investigations, excellent communication skills, and a Juris...Suggested
$152k - $187k
...our public policy, safety, security and privacy experts to define transportation policy... ...and commercial transactions. We ensure compliance with an increasingly complex and dynamic... ...experience working as a trade compliance specialist, preferably in‑house. Experience performing...SuggestedFull time$175k - $220k
...Bridgewater. About the Team The Security team at LangChain treats compliance as a business enabler, not a checkbox. We move fast, build... ...’ll play a central role in building and scaling LangChain’s privacy compliance program, developing the processes, technical controls...SuggestedContract workWork at officeFlexible hours- ...OF THE POSITION: Under the direction of the Regional Compliance Director, the Compliance Specialist determines applicants’ initial eligibility for... ...Angeles Fair Chance Initiative. California Consumer Privacy Act Effective January 1, 2020, the California Consumer...SuggestedWork at officeLocal areaRemote workFlexible hours
$10k
We’re seeking a Senior Regulatory Compliance Specialist for a 6-month temporary assignment to lead high-impact regulatory projects in connection... ...review to enhance outcomes Partner closely with legal and privacy stakeholders to ensure accuracy and completeness of all...Temporary workWork experience placement$100k - $175k
Overview The Compliance Specialist will be involved in various aspects of an ever-changing regulatory landscape within the Compliance Team of... ...skills, including a high degree of client service-mindedness Privacy Notice for California Applicants Artisan Partners Limited...Work at office$135k - $165k
...organizations review, negotiate, and manage contracts. Security, privacy, and trust are foundational to our platform and customer... ...scale, we are looking for a highly motivated Governance, Risk & Compliance (GRC) Analyst to support and mature Ivo's security compliance...Contract workFlexible hours$120 per hour
...Benchmark , General Catalyst , Peter Thiel , Adam D'Angelo , Larry Summers , and Jack Dorsey . Position: Privacy / regulatory compliance Evaluator Type: Contract Compensation: $80–$120/hour Location: Remote Role Responsibilities...Remote jobContract workSummer workWork at office$161.6k - $202k
...of patients — and that responsibility demands a security and compliance program that scales with the business. We're building out our... ...Blake Atkinson, Director of Security, and partners closely with Privacy and Engineering teams. What You'll Own Support HITRUST...Work from homeFlexible hours- ...Primary Job Function – 70% 1) Manages Regulatory and Compliance Issues by providing administrative support through implementing systems, procedures, and policies; completing projects in support of compliance auditors. Includes reviewing existing regulatory guidelines...Contract workWork at officeLocal areaFlexible hours
- ...banking space is looking for an analyst to support the firm’s compliance function. This person will focus on conflicts clearance, restricted... ...private information, please review Insight Global’s Workforce Privacy Policy: Skills and Requirements Bachelor’s Degree 1-3 years...
- ...Compliance Officer This position is within the Administrative Services Group Compliance Function and is responsible for taking a lead... ...Council guidance on information security standards, BSA/AML, Privacy, OFAC, Payment Card Industry Standards, National Automated Clearinghouse...
- Nossaman is seeking an Information Governance Analyst in San Francisco to protect the Firm's information assets and ensure compliance with confidentiality and regulatory standards. This hybrid role involves collaboration with IT and practice teams, implementing data governance...
$99k - $232k
The Opportunity As a Cybersecurity, Privacy and Forensics - Data Protection - PKI Implementation Manager, you will specialize in providing... ...of privacy and data protection requirements, confirming compliance with applicable laws and regulations. Working in this area, you...$150k - $180k
...finds and uses knowledge. The Role We're looking for a GRC Analyst to join our growing Security, IT, and Privacy function. You'll be the backbone of all the compliance work at the intersection of Engineering, Legal, and Product. This role will build and maintain the...Full timeImmediate startRemote workWork from homeFlexible hours- ...Compliance & Outcomes Specialist Hike Medical is building the defining company in musculoskeletal care. We sit at the intersection of AI, robotics, and healthcare, operating across three product lines: a proprietary AI-vision platform that turns a 30-second, web-based...Work at office
$78.9k - $131.5k
Rippling is seeking a Payments Licensing Specialist in San Francisco, California. You will assist with licensing and compliance programs, manage regulatory examinations, and implement innovative solutions to improve efficiency. The role requires extensive compliance experience...- ...values of professionalism and integrity. Job Description Bell Properties, Inc. is currently seeking a dedicated and experienced Compliance Specialist to join our team. The Compliance Specialist will play a pivotal role in ensuring that our operations comply with all...
- Waymo, a leader in autonomous driving technology, seeks a Trade Compliance Specialist to join our Legal team across U.S. locations. You will manage import/export classifications, develop compliance measures, and support audits for global shipments. The role partners with...
- The John Stewart Company is hiring a Compliance Specialist in San Francisco to oversee eligibility for affordable housing programs. This role requires strong compliance skills and the ability to collaborate with various stakeholders. Applicants should have knowledge of...Work at officeRemote work
- ...economy. Learn more about our vision in our manifesto. About the Role We are looking for a GRC Specialist to join our Security team. Your mission is to scale our compliance frameworks and ensure we maintain a "continuously audit-ready" state. You will own the day-to-day...WorldwideShift work
- ...week to collaborate and thrive, together! Position Summary Flynn Group is seeking a highly proactive, detail-oriented Compliance Operations Specialist (Legal and HR) to support the Compliance team. This highly cross‑functional role is responsible for coordinating and executing...Temporary workCasual workWork at officeLocal areaWork from homeFlexible hours
- ...infrastructure, protecting sensitive data, and meeting global compliance standards are essential to our success and societal impact. Security... ...Technical Program Manager to drive cross-functional security, privacy, and compliance initiatives at the intersection of...Work at officeRelocation package
- ...Job Function Summary Involves staffing, administering or managing research oversight and compliance committee activities related to research activities such as human subjects, animal use and care, conflict of interest and export control. Reviews research protocols for...Contract work
$74.8k - $112.2k
...highly motivated and detail-oriented Senior Compliance Associate to join our legal and... ...or CAMS (Certified Anti-Money Laundering Specialist) designation (preferred). Ability to... ...California Employee and General Workforce Privacy Notice for further information. By submitting...Remote workVisa sponsorshipWork visa$134k - $202k
...the role: We are looking for a GRC Analyst to join our Governance, Risk & Compliance (GRC) team. You will have the opportunity to manage and maintain ongoing compliance with security and privacy frameworks, policies, procedures, and commercial assessments, including ISO...Work at officeRemote workWork from homeWorldwideMonday to FridayFlexible hours$96k - $144k
...empower creators to own their own destiny. Compliance is critical to Klaviyo’s success. Our... ...from alerts and incidents with Specialists and peers; participate actively in team... ...and messaging compliance (email, SMS, privacy standards, and global regulations). Monitoring...Temporary work$35k - $48k
...Citizenship: Required Summary The MIL Corporation seeks a Junior Compliance Officer (Operations, Jr. Analyst) to support a federal law... ...the duty location. Follow all applicable DHS and ICE policies, privacy, records management, and information assurance requirements when...Full timeContract workFor contractorsWork at officeRemote workWeekend work$65 - $85 per hour
...Senior GRC Analyst – Security & Compliance LHH Recruitment Solutions is partnering with a high-growth, cloud-native SaaS organization... ...(e.g., OWASP LLM Top 10, MITRE ATLAS). Knowledge of data privacy regulations such as GDPR, particularly in relation to employee...Contract workTemporary workWork at officeLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Privacy & Compliance Specialist. Be the first to apply!
- senior regulatory affairs specialist San Francisco, CA
- regulatory affairs consultant San Francisco, CA
- regulatory compliance specialist San Francisco, CA
- trade compliance specialist San Francisco, CA
- legal compliance analyst San Francisco, CA
- research compliance officer San Francisco, CA
- regulatory specialist San Francisco, CA
- coding compliance specialist San Francisco, CA
- information security compliance analyst San Francisco, CA
- senior compliance analyst San Francisco, CA


