Design clear privacy notices and consent forms:

• Create user-friendly privacy notices and consent forms that ensure transparency and compliance with regulations, such as the EU General Data Protection Regulation and California Consumer Privacy Act.

Minimize data through UX design:

• Design interfaces that encourage data minimization.
• Collect and display only necessary data.
• Avoid dark patterns.
• Work with front-end engineers to limit customer data exposure internally and to third parties.

User testing for privacy understanding:

• Conduct usability testing to assess how well users understand privacy controls and settings and iterate based on feedback.

Integrating privacy enhancing technologies:

• Work with privacy engineers to design interfaces that incorporate PETs, like anonymization or pseudonymization.

Compliance alignment:

• Collaborate with legal, compliance, and engineering teams to ensure that all user-facing privacy interfaces are compliant with internal policies and external regulations.

Technical competencies

Expertise in:

• Human-computer interaction
• User-centered design
• Privacy by design
• Information architecture
• Usability testing

Areas of experience

Knowledge in:

• Applying privacy principles to user research.
• Interaction design
• Visual design
• Prototyping

Tools and techniques

Use of design tools like:

• Figma
• Adobe XD
• Usability testing platforms like Lyssna or UserTesting to create privacy-compliant designs.
• A/B testing

Reports to:

• Chief design officer, chief privacy officer or head of product design.

Works with:

• Privacy engineers
• Legal and compliance teams
• Data scientists
• Product managers
• Front-end engineers
• Marketing teams

Key stakeholders:

• Product development
• Engineering
• Customer experience teams

Privacy by design and default:

• Ensure that privacy is a fundamental component of all user-facing features and systems, rather than an afterthought.

Transparency and user empowerment:

• Promote transparency by providing users with clear options for data control and easy-to-understand privacy settings.

Ethical design:

• Avoid dark patterns that manipulate user behavior and ensure that all design choices respect users’ autonomy and preferences.

Regulatory compliance:

• Design interfaces that meet legal and regulatory standards while maintaining a positive user experience.

Design and prototyping tools:

• Canva
• Figma
• Lunacy
• Penpot

Usability testing platforms:

• UserTesting / Lyssna
• Lookback

Privacy impact and risk assessment tools:

• LINDDUN

Privacy enhancing technologies:

• Differential privacy libraries such as PySyft or Google Differential Privacy.
• Anonymization tools such as ARX or Amnesia.

Analytics and data management platforms:

• Matomo
• Tealium
• Segment

Compliance and consent management platforms:

• Consent management platforms
• Tag management system, such as Google Tag Manager.

Design guidelines and frameworks:

• The UX Guide to Getting Consent
• NIST Privacy Framework
• Privacy UX

Privacy engineering community and learning resources:

• Privacy by design training
• Privacy engineering courses
• CIPT certification

Clear and concise communication:

• Privacy notices and settings are easy to understand.
• Avoid legal jargon
• Make key information accessible at a glance.

User-friendly and respectful consent mechanisms:

• Consent flows are simple, transparent, and free from manipulative patterns.
• Users are empowered to make real choices.

Transparent and voluntary consent:

• Design consent frameworks without pressure tactics, like consent or pay, or confusing defaults.
• Free, informed choice builds trust.

Ethical and inclusive design:

• Interfaces accommodate diverse user needs and avoid pressure, ensuring everyone feels respected and in control.

High usability scores:

• Privacy settings are intuitive, with strong usability test outcomes and positive user sentiment.