Privacy Counsel, Vietnam

Grab
Grab

Legal

Ho Chi Minh City, Vietnam

Posted on Jul 14, 2026

Company Description

Grab is Southeast Asia's leading superapp. From getting your favourite meals delivered to helping you manage your finances and getting around town hassle-free, we've got your back with everything. In Grab, purpose gives us joy and habits build excellence, while harnessing the power of Technology and AI to deliver the mission of driving Southeast Asia forward by economically empowering everyone, with heart, hunger, honour, and humility.

Job Description

Get to know the Team:

The Data Privacy Office is accountable for managing Grab's personal data practices. We are looking for a self-motivated, highly energised Vietnam DPO to be part of our Privacy Office to facilitate and oversee data privacy and data protection contracts & processes, to ensure that we stay compliant with Vietnam privacy laws.

Get to know the Role:

In this role, you will have the opportunity to work on privacy issues across Grab verticals. You will work with key stakeholders in our product, engineering, business and marketing teams to design privacy solutions that enable Grab to meet its global privacy obligations. You will be called upon to provide privacy and data security subject matter expertise to our legal counsels as they negotiate complex commercial deals that contribute to our products' success. As we expand our offerings in SEA, your ideas and contributions will make an immediate impact.

This individual will also be assisting the Head of Privacy Office, the Regional Senior Privacy Counsels and other members in the Privacy Office, in charting data privacy strategies to ensure full compliance with any future and existing laws and regulations including:

  • Law on Personal Data Protection 2025 (Law No. 91/2025/QH15)
  • Decree No. 356/2025/ND-CP
  • Cybersecurity law No. 116/2025/QH15
  • Decree No. 53/2022/ND-CP (Cybersecurity Law Implementation)
  • Law on Artificial Intelligence

The day-to-day activities:

  • Conduct privacy impact and vendor risk assessments, recommend practical remediation and provide risk-based advice to leadership.
  • Review agreements for the transfer and processing of personal data among various entities.
  • Ensure compliance with Grab policies, laws, and regulations relating to privacy.
  • Develop and maintain internal practices to support Grab's privacy initiatives.
  • Provide ongoing management, content development and oversight of the privacy training program.
  • Provide project support to the Legal team on privacy and data protection issues.
  • Build, refine, and scale the privacy and data protection compliance framework.
  • Identify opportunities to improve and automate privacy processes, frameworks, and controls.
  • Lead and support responses to regulatory investigations and data subject requests.
  • Lead and support investigations on privacy incidents.
  • Perform privacy reviews and advise business and product development teams to embed Privacy by Design into new products, AI-enabled features and emerging technologies.
  • Collaborate with the Public Affairs team to monitor privacy and data-protection related developments and coordinate communications with regulators as necessary
  • Collaborate regularly with leadership to provide strategic guidance on emerging privacy requirements.
  • File Dossiers to comply with the applicable regulations.

Qualifications

The must haves:

  • Proficient in both written and oral English & Vietnamese
  • 5-10 years experience in Data Privacy, Compliance, Information Security, or Legal roles.
  • Experience in complaint and breach handling and remediation.
  • Experience in rolling out and running a data privacy programme.
  • Ability to prioritize and manage multiple projects and work in a fast-paced environment.
  • Organized, responsive, and able to gain support and consensus with multiple stakeholders.
  • Degree in law or equivalent
  • Experience in, and a strong passion for technology, AI, big data, data governance and data privacy
  • Good knowledge of current and upcoming data privacy and cybersecurity laws in Vietnam.
  • A collaborative self-starter who can work independently, and be comfortable in a high-growth, fast-paced and dynamic environment
  • Team player with a proven track record of building cross-functional relationships.
  • Demonstrated ability to complete several simultaneous projects on a deadline.
  • CIPP or CIPM other Privacy certifications a plus.
  • Good understanding of the laws required for this role.