Details of the Organization

Digio is a startup focused on driving India's Digital transformation - by bringing paperless, presence less, hassle-free digital processes to Indian businesses and consumers.

Details of the Job/Internship

Digio.in is hiring a Legal and Compliance Manager with 5-8 years of experience to join their office in Bengaluru. 

Role and Responsibilities

1. Regulatory Compliance (RBI & Others)

• Ensure ongoing compliance with RBI Master Directions applicable to AAs and PAs, including licensing, reporting, and operational standards.
• Monitor regulatory changes and update internal compliance frameworks accordingly.
• Oversee accurate and timely submission of statutory filings, incident reports, and audit documents to regulatory bodies.

2. Legal Advisory & Documentation

• Provide legal guidance on RBI, IT Act, data privacy, payment laws, and other relevant statutes.
• Draft, vet, and negotiate contracts, including service agreements, merchant onboarding documents, and data-sharing arrangements.
• Ensure adherence to RBI consent architecture and data governance requirements under the AA framework.

3. Data Privacy & Security Compliance

• Implement compliance with PDPB, GDPR, RBI cybersecurity norms, PCI DSS, and ISO 27001.
• Oversee secure consent management systems and ensure customer data is shared lawfully under AA norms.
• Collaborate with IT and cybersecurity teams to uphold best practices for data protection.

4. Risk & Fraud Management

• Identify and mitigate legal and regulatory risks across both AA and PA operations.
• Ensure effective implementation of AML/KYC, fraud detection systems, and internal controls.
• Establish robust frameworks for managing consumer privacy and data integrity.

5. Contract Lifecycle Management

• Manage end-to-end contract drafting and compliance for FIPs, FIUs, merchants, and third-party vendors.
• Ensure all contracts align with legal requirements and RBI standards for merchant and data partnerships.

6. Internal Audits & Policy Governance

• Lead periodic internal audits to assess compliance across AA and PA verticals.
• Continuously improve compliance manuals, SOPs, and regulatory checklists in line with evolving guidelines.

7. Regulatory Liaison

• Act as the single point of contact for RBI, data protection authorities, and other regulators.
• Handle inspections, respond to queries, and represent the organization during regulatory audits and communications.

8. Dispute Management

• Manage and resolve legal disputes related to data sharing, privacy, merchant settlements, and customer complaints.
• Engage with external legal counsel on complex regulatory or litigation matters as needed.

9. Training & Awareness

• Conduct training sessions for internal teams on compliance updates, regulatory frameworks, and legal risk management.
• Promote a culture of compliance through awareness programs on data protection, cybersecurity, and fraud prevention.

Eligibility

Education:

• Bachelor’s or Master’s degree in Law (LLB/LLM), Finance, or related fields.
• Certifications in data privacy, fintech compliance, or cybersecurity (e.g., CIPP, PCI DSS, ISO 27001) are advantageous.

Experience:

• 5–8 years in a legal, regulatory, or compliance role within fintech, financial services, or payments.
• Mandatory experience with RBI regulations governing Account Aggregators and Payment Aggregators.

Salary/Stipend

Compensation details will be finalized during the interview process with the selected candidate.

Type of Opportunity

Fulltime

Country

India

Address

Bengaluru, Karnataka

Application and Registration Details

After you submit your application, you will receive the next steps in the process via email. Please follow the instructions provided to complete your application.

Incase you find any issue with the application process, please contact: [email protected] 

Stay informed about premier legal opportunities on a daily basis by joining our exclusive WhatsApp channel: https://whatsapp.com/channel/0029VaVAeN7J3jusbby2Ph33

We are solely providing this information for dissemination and wish to clarify that we are not affiliated with the organization.