2,591 Open roles
98 Companies
34 Posted today
Jobs / Trustly / Privacy Counsel, EU/UK
Posted 2026-06-22

Privacy Counsel, EU/UK

Description

We are seeking an experienced Privacy Counsel to join our global Legal, Compliance & Risk team at an exciting period in Trustly's growth. Reporting directly to the Global Head of Privacy & DPO, you will support the implementation and adaptation of Trustly's global privacy framework across EU and UK, advise on data protection matters, and ensure compliance with the highest privacy standards. Working closely with Product, Engineering, Marketing and Compliance teams, you will embed privacy by design throughout the organisation. This role requires strong expertise in EU and UK privacy laws and regulations, with proven experience advising on cross-border data transfers. The ideal candidate will be a strategic thinker with practical problem-solving abilities, who thrives on partnering closely with business teams to navigate the complex and rapidly evolving privacy landscape.

Responsibilities
  • Support the execution of Trustly's privacy strategy for the EU and UK region, ensuring compliance with the EU GDPR, UK GDPR, Data Protection Act 2018, ePrivacy Directive, and national data protection laws across EU member states.
  • Conduct privacy impact assessments and DPIAs for new products, services, features, and business initiatives.
  • Provide practical, business-focused legal advice on privacy matters to internal stakeholders.
  • Advise on data subject rights requests (including rights to access, erasure, portability etc).
  • Support privacy breach preparedness and incident response efforts for the EU and UK region, including contributing to incident response plans, coordinating breach investigations, and managing notifications to supervisory authorities and communications to data subjects.
  • Advise on and support the negotiation of data processing agreements, data transfer mechanisms (including standard contractual clauses, adequacy decisions, and other transfer tools), and privacy terms with vendors, partners, and customers.
  • Monitor legislative and regulatory developments affecting privacy and data protection in the EU and UK, including tracking national implementations of EU directives and regulations, providing timely analysis and recommendations to senior leadership.
  • Collaborate closely with the global Privacy & DPO team to ensure alignment on privacy strategies, share best practices, and coordinate cross-regional privacy initiatives.
  • Develop and maintain privacy documentation, including records of processing activities, legal advice notes and privacy compliance registers.
  • Support privacy-related audits, assessments, and due diligence activities.
Requirements
  • Law degree (LLB, LLM, or equivalent) and qualified solicitor, barrister, or equivalent legal qualification in an EU member state or the UK (required).
  • Minimum of 3-5 years of experience as a privacy lawyer (including demonstrated experience advising on GDPR, UK GDPR, and national data protection laws) (required).
  • Demonstrated experience in the FinTech or the payment services sector, with knowledge of the unique privacy challenges and regulatory landscape affecting payments and financial technology companies would be a bonus (nice-to-have).
  • Experience working as part of a global privacy team, with proven ability to collaborate effectively across multiple jurisdictions and time zones (required).
  • Demonstrated experience handling data subject rights requests and data disclosure requests from law enforcement authorities (required).
  • Strong knowledge of EU and UK privacy laws and regulations, including GDPR, UK GDPR, Data Protection Act 2018, ePrivacy Directive, and national data protection laws across the EU (required).
  • Experience advising on cross-border data transfers, including standard contractual clauses, adequacy decisions, and other transfer mechanisms (required).
  • Relevant professional privacy certifications (e.g., CIPP/E, CIPM, CIPT) are highly desirable (preferred).
  • Strong interpersonal and communication skills and the ability to explain complex legal issues in simple terms (required).
  • Entrepreneurial and creative by nature, with a bias for action (required).
  • Strong legal drafting skills, with experience developing privacy policies, notices, consent mechanisms, data processing agreements, and controller-processor agreements (required).
  • Strong project management skills and ability to manage multiple complex privacy initiatives simultaneously (required).
  • Proven ability to provide practical, business-oriented privacy advice that balances legal compliance with business objectives (required).
  • Experience managing data breach incidents, including regulatory notifications to supervisory authorities and communications with affected data subjects (required).
  • Strong analytical and problem-solving skills, with the ability to assess privacy risks and develop pragmatic solutions (required).
  • Willingness to work flexible hours to collaborate with global privacy team members across different time zones (required).
Benefits
  • £60,000 - £120,000 a year.
  • 20 to 30 days of holiday to support a healthy work-life balance.
  • Monthly team outing allowance to enjoy social events with your colleagues.
  • Parental leave top-up additional support for new parents.
  • On-site perks to make your workday smoother.
  • Well being support our health allowance covers gym memberships, massages, and much more to help you feel your best.
  • PLUS additional benefits designed to enhance your work-life experience!