Privacy Specialist, Woven City Management



Tokyo, Japan
Posted on Sunday, April 30, 2023
Woven by Toyota is building mobility for a safer, happier and more sustainable world. A subsidiary of Toyota, Woven by Toyota develops and invests in new technologies, software, and business models that transform how we live, work and move. With a focus on software-defined vehicles, automated driving, data-driven intelligence, security, mobility services, embedded platforms, AI, and more, we build on Toyota's legacy of trust and safety to deliver mobility solutions for all.
For nearly a century, Toyota has been delivering products and services that improve lives. Its earliest offerings, which automated the simple manual task of weaving, have evolved into the safe, reliable, connected automobiles we enjoy and depend on today. Woven by Toyota is an integral part of Toyota’s vision for the next 100 years—a world where mobility is easier, safer and more enjoyable for more people.
Our unique global culture weaves modern Silicon Valley innovation and time-tested Japanese quality craftsmanship and operational excellence. These complementary strengths enable us to develop and deliver cutting-edge technology at scale—optimizing for safety, advancing clean energy and elevating well-being. We envision a human-centered future where world-class technology solutions expand global access to mobility, amplify the capabilities of drivers, and empower humanity to thrive.
The Toyota Woven City is a fully connected ecosystem powered by hydrogen fuel cells to be built at the base of Mt. Fuji in Japan. It is envisioned as 'A Living Laboratory' and 'Ever Evolving City', incorporating various types of cutting edge technologies. At the same time, it is also 'Human-Centered,' that is, it is expected to keep people safe and comfortable. Our mission is to guide every single business and service of Woven City to most effectively and passionately move forward towards each operation phase of the ever-evolving city.
The Toyota Woven City contains 10+ key strategic focus areas and we are envisioning to empower people through these services and realize a "Human-Centered" experience for everyone.
For more information about Woven City, please visit: https://www.woven-city.global/
Do you have experience identifying and managing enterprise or administration privacy and security risks end-to-end, identifying gaps in compliance?
We are looking for an experienced Privacy Specialist who will be responsible for Woven City's data privacy and protection function not only to ensure compliance with various regulations and best practices but also to implement Woven City's privacy policy and measures that are firmly based on the city's vision 'Human-Centered'.
You will digest 10+ key strategic focus areas and Woven City's privacy policy, and ensure compliance externally and internally with the applicable requirements under various data privacy regulations.
Woven City privacy demands high standards and requires challenges, so a passion and discipline around privacy and delivery is critical. A high level of ownership and accountability is a must.


  • Digest Woven City 10+ key strategic focus area by working various internal stakeholders including engineers as an One Team. Identify critical areas in terms of privacy and organize in order of priority.
  • Implement and maintain a privacy governance framework to manage data use in compliance with applicable data protection regulations, including developing policies, standards and templates for data collection, and assists with data mapping, and vendor management reviews
  • Collaborate with other privacy and security teams to ensure alignment between privacy and security compliance programs including policies, practices, investigations
  • Perform the necessary data privacy risk assessment such as PIA/DPIA, mitigation and remediation
  • Perform or assist data privacy compliance audits programs to identify gaps in controls and processes and drive remediation efforts


  • 3-5+ years of experience within Information Risk Management, IT audit or Privacy/Security Governance function
  • Hands-on experience that proves to work independently when required as a part of team work
  • Experience working in an environment where privacy is multi-faceted and not exclusively compliance related
  • Proven record of meeting privacy requirements such as APPI, GDPR and CCPA
  • Experience in IT auditing and technical assessments of networks, operating systems, cloud environments
  • Excellent written and verbal communication skills
  • Mind-set to simplify or automate process so that the other team can perform tasks efficiently


  • A legal, compliance or policy related background would be an advantage
  • Hands-on experience in using GRC tools (Ideally online GRC tools such as OneTrust, etc.)
  • Technical expertise in the security field
  • Basic knowledge of privacy enhancement technologies in general
If you are currently located outside of Japan we will set up an interview over Google Hangout Meet or Skype.
・Competitive Salary - Based on skills and experience
・Work Hours - Flexible working time with NO core-hours
・Paid Holiday - 20 days per year (prorated)
・Sick Leave - 6 days per year (prorated)
・Holiday - Sat & Sun, Japanese National Holidays, and other days defined by the company
・Japanese Social Security - all applicable (Health Insurance, Pension, Workers’ Comp, and Unemployment Insurance, Long-term care insurance)
・In-house Training Program (software study/language study)
By submitting your application you agree to the following terms: click here.
Our Commitment
・We are an equal opportunity employer and value diversity.
・We pledge that any information we receive from candidates will be used ONLY for the purpose of hiring assessment.