Share this job
Data Privacy Lawyer
Apply for this job

Contract: Full-time, Permanent

Work-mode: Hybrid (minimum three days per week in the office)

Location: London, United Kingdom

Salary: £75,000 – £80,000 gross per annum + bonus + benefits


Our client is a well-known international retail group with a strong global presence across Europe, North America, and APAC. The company is committed to innovation, customer excellence, and ethical business practices. As part of its ongoing growth, the business is strengthening its Legal team and now seeks a talented Data Privacy Lawyer to support its expanding international operations.


This is an exciting opportunity for a qualified lawyer with hands-on experience in data privacy law to join a dynamic global legal team. Reporting to the Senior Counsel — International, the successful candidate will serve as the day-to-day privacy advisor for the organisation, ensuring compliance with data protection laws and supporting privacy initiatives across multiple jurisdictions.


This role combines privacy advisory work, commercial contract review, and collaboration with international teams — ideal for someone who thrives in a fast-paced, cross-border business environment.


Responsibilities

  • Act as the primary legal advisor on data protection and privacy matters across the business
  • Provide pragmatic, business-focused legal advice on global data privacy and data-sharing issues (EU, UK, Canada, Mexico, APAC, and the US)
  • Draft, review, and negotiate commercial contracts with privacy and data transfer clauses (including e-commerce, SaaS, and consultancy agreements)

Prepare and maintain key data protection documents, such as:

  • Data Processing Agreements (DPAs)
  • Data Transfer Agreements (DTAs)
  • Privacy Impact Assessments (PIAs)
  • Support the implementation and enhancement of the company’s global privacy governance framework
  • Review and update privacy policies, internal procedures, and training materials
  • Manage and respond to data subject access requests (DSARs) and data breach incidents
  • Work closely with business and IT teams to ensure personal data processing activities are properly recorded and compliant
  • Monitor global regulatory developments and brief senior management on emerging privacy risks and obligations
  • Support the delivery of privacy training and awareness across the organisation


Requirements

  • UK-qualified lawyer (or equivalent) with 3–5 years’ post-qualification experience in data privacy and data protection law
  • Strong understanding of GDPR, UK Data Protection Act 2018, and global data transfer mechanisms
  • Proven experience providing in-house privacy counsel, ideally within a large international organisation
  • Experience drafting and negotiating commercial contracts with privacy provisions
  • Excellent written and verbal communication skills with the ability to engage confidently with senior stakeholders across jurisdictions
  • Strong project management, analytical, and organisational skills
  • Collaborative team player who can also work independently and manage competing priorities
  • Experience in the retail sector or another consumer-facing industry is desirable
  • Proficient in Microsoft Office SuiteLaw degree (or equivalent)
  • Qualified solicitor (UK or equivalent jurisdiction)
  • Certified privacy qualifications (e.g., CIPP/E, CIPM) will be considered an advantage
Apply for this job
Powered by