Privacy Manager

This is a fully remote position, open to applicants in Netherlands.

📋 Description

• Provide guidance to business teams (including marketing, sales, IT, and operations) on compliance with privacy, AI, and related regulations, collaborating with peers in the Group Privacy Office to offer advice for projects with both regional and global implications.

• Conduct privacy risk assessments for vendors and third parties, particularly focusing on cloud service providers, data center partners, and managed service vendors.

• Assist with assessments related to cross-border data transfers, including Standard Contractual Clauses (SCCs), Transfer Impact Assessments (TIAs), and adequacy mechanisms.

• Deliver clear, practical, and pragmatic advice in a multicultural setting, skillfully balancing regulatory expectations with business realities.

• Provide efficient counsel on data protection clauses in agreements, encompassing licenses, vendor partnerships, SaaS, technology, master services, confidentiality, and other contractual documents.

• Facilitate product development by advising on principles of privacy-by-design and privacy-by-default, aligning regulatory requirements with business objectives and partner/customer expectations.

• Prepare, revise, and maintain internal and external privacy documentation, including Data Protection Impact Assessment (DPIA) templates, guidance materials, FAQs, and communication resources. Execute privacy impact assessments, responsible AI evaluations, and other governance responsibilities, while contributing to the upkeep of processing records and adherence to privacy-by-design and privacy-by-default principles.

• Counsel sales and marketing teams on the compliance implications of various marketing initiatives, including online advertising, behavioral advertising, social networking, email, SMS/text, and other consumer-facing communications.

• Collaborate closely with Information Security, Data Governance, Risk, and Audit teams to identify and mitigate compliance risks related to data protection, including issue spotting and advising on cybersecurity and data incidents.

• Assist with the privacy aspects of data breach and incident response, including regulatory notifications within EU deadlines.

⛳️ Requirements

• LLM or J.D. degree or an equivalent qualification with strong academic achievements.

• Minimum of 6 years of direct experience in privacy, data protection, or related compliance roles, preferably in a technology-oriented and/or international context.

• In-depth, demonstrable knowledge of European data protection laws and global privacy regulations (e.g., UK GDPR, Swiss FADP, CCPA).

• Proven expertise in US privacy legislation, with experience in interpreting regulatory guidance and drafting relevant privacy notices, policies, and procedures.

• Practical experience with DPIAs, Records of Processing Activities (RoPAs), vendor evaluations, and data transfer mechanisms.

• Experience advising corporate clients on compliance issues.

• Proficiency in negotiating and drafting contracts.

• Capability to work independently, exercise sound judgment, and make decisions within established guidelines and risk management frameworks.

• Exceptional oral and written communication skills.

• Strong problem-solving and issue-resolution abilities.

• Ability to collaborate effectively with business partners at all levels and demonstrate leadership on complex, high-priority issues.

• Skill in translating intricate privacy and regulatory concepts into clear, business-friendly language and applying them in a complex technical context.

🏝️ Benefits

• Competitive compensation.

• Opportunities for career growth and development.

• Flexibility and ownership in your role.

• A collaborative and innovative work culture.

• The chance to contribute to impactful AI projects.

• An international environment with talented teams.