Data Privacy Specialist

We are currently seeking a Data Protection Specialist to join our growing team. Reporting directly to the Senior Data Privacy Manager and indirectly to the General Counsel, you will be a key contributor to the development of our in-house legal function. In this role, you will develop and uphold a data protection framework for Readdle that conforms to regulatory requirements and addresses the needs of both users and the business.

What you will do:

• Conduct privacy reviews of vendor contracts, data processing agreements, and internal documentation.
• Maintain and update privacy records, including RoPA, DPIAs, and related compliance registers.
• Support teams across Product, Marketing, HR, and Customer Support with privacy-related guidance.
• Monitor regulatory developments and help adapt internal practices accordingly.
• Collaborate with stakeholders to ensure privacy compliance in new product features and services.
• Assist in managing data subject requests (e.g., access, deletion) and privacy inquiries.
• Help develop and update privacy policies, templates, and training materials.
• Participate in incident response processes involving potential data breaches.
• Contribute to internal process improvements and risk mitigation strategies.
• Act as a point of contact for day-to-day privacy questions from internal teams.

About you:

• Strong knowledge of global data privacy laws, especially GDPR (CIPP/E or equivalent is a plus).
• Experience with privacy assessments, including DPIAs, vendor reviews, and RoPA maintenance.
• Hands-on experience reviewing data protection clauses in contracts and DPAs.
• Excellent written and verbal communication skills, with the ability to explain legal/privacy concepts to non-experts.
• Attention to detail and a proactive, risk-aware mindset.
• Ability to manage multiple tasks and priorities in a fast-paced, cross-functional environment.
• Familiarity with SaaS and digital products and how personal data flows in those contexts.
• Comfort working independently within a small, collaborative legal or compliance team.
• Solid understanding of data subject rights and how to operationalize them.
• Ethical judgment and confidentiality, especially when handling sensitive information.

Would be a plus:

• Understanding of cybersecurity basics and how they intersect with privacy.
• Comfort with data mapping and flow analysis across systems and third parties.
• Experience in a startup or high-growth environment, where processes are still maturing.
• Basic project management skills to coordinate privacy tasks across teams.
• Interest in staying current with privacy trends and translating them into actionable steps.
• Training or awareness-building experience, e.g., conducting privacy workshops or team briefings.
• Legal drafting skills for internal policies or custom contract clauses.
• Multilingual abilities, particularly if supporting global operations.