Privacy Counsel
80000 - 100000 GBP per year
Company:HackerOne
Location:United Kingdom
Languages:English
Seniority level:Senior, 5+ years
Experience:5+ years
Skills:
Artificial IntelligenceCybersecurityNegotiationComplianceRisk Management
Requirements:
Qualified lawyer (UK or EU) with GDPR experience PQE 5+ years. Strong knowledge of EU/UK GDPR and familiarity with global privacy laws (US, Middle East, Asia). Experience drafting and negotiating data processing agreements and handling privacy-related issues in a global business context. Proven ability to manage data breaches, regulatory notifications and privacy audits. Excellent communication skills to simplify complex legal concepts. Strong understanding of AI technologies, their ethical implications, and related legal frameworks. Excellent analytical, problem-solving, and decision-making skills. Experience in using privacy management systems such as OneTrust. Ability to manage multiple priorities and work collaboratively. Comfortable working independently in a fast-paced, global environment.
Responsibilities:
Support global data protection, AI governance, and commercial contracting. Accelerate product development, sales motions, internal procurement and cross-border data operations. Provide guidance on privacy assessments and review customer/vendor agreements. Apply an AI-First approach using AI tools responsibly. Adapt quickly to evolving global privacy and AI regulations. Simplify complex privacy questions using First Principles Problem Solving. Leverage Data-Driven Decision Making for DPIAs and assessments. Support privacy function with global privacy assessments (DPIAs, AI DPIAs, TIAs, LIAs). Review product features, AI capabilities, and data practices for privacy-by-design. Draft, review, and negotiate data processing agreements (DPAs), privacy terms, and commercial contracts. Maintain and update privacy contractual documentation and internal templates/policies. Create and deliver internal training on privacy and AI governance. Support internal and external privacy audits and coordinate with external advisors. Monitor evolving privacy laws, case law, AI governance frameworks, and regulatory trends.
