Job Description

PLEASE READ THE FULL JD BEFORE APPLYING. INCOMPLETE APPLICATIONS MAY NOT BE CONSIDERED.

Senior Privacy & Compliance Manager (Fractional | Remote)

Location: Remote

Working Pattern: Fractional / Part-Time

Reporting To: General Counsel

About the Opportunity

Our client is an emerging technology company developing advanced AI-driven cyber intelligence and risk management solutions for regulated industries.

As the business continues to scale and expand into new markets, they are seeking a Privacy & Compliance Lead to support the development and operation of their privacy, compliance, governance, and legal operations functions.

This is a substantive individual contributor role offering significant ownership and responsibility across privacy, compliance, governance, and operational legal matters.

Working closely with the General Counsel, you will help build and maintain scalable compliance processes that support a growing international technology business.

This opportunity is best suited to professionals who are comfortable contributing within an early-stage environment where engagement structures evolve alongside company growth.

Application Process & Qualifying Questions

Please include your responses to the following questions within the same document as your CV:

1. Experience

How many years of experience do you have working in privacy, compliance, legal operations, regulatory affairs, or related functions?

2. GDPR & Privacy Operations

Please briefly describe your experience managing GDPR compliance activities, including any involvement with:

• Records of Processing Activities (RoPA)
• Data Protection Impact Assessments (DPIAs)
• Data Subject Rights Requests
• Data Processing Agreements (DPAs)

3. Industry Background

Have you worked within a SaaS, technology, cybersecurity, fintech, financial services, or other regulated environment? If yes, please provide details.

4. Certifications

Do you hold any privacy, compliance, legal operations, or governance certifications (e.g. CIPP/E, CIPM, CIPT, ISO 27001, SOC 2, etc.)?

5. Working Style

Are you comfortable working within a fractional, remote-first environment where you will be expected to operate independently and manage your own priorities?

Applications submitted without responses to the above questions may not be reviewed.

Key Responsibilities

Compliance Programme Management

• Support the day-to-day operation of the compliance programme
• Maintain compliance calendars, risk registers, and internal policy libraries
• Monitor regulatory developments across relevant UK, EU, and international frameworks
• Prepare compliance briefings and management updates
• Coordinate compliance training and awareness activities
• Support audit preparation and certification activities, including ISO 27001 and SOC 2

Privacy & Data Protection Operations

• Support GDPR compliance activities across the business
• Maintain privacy records, registers, and supporting documentation
• Coordinate Data Protection Impact Assessments (DPIAs)
• Manage Data Subject Rights Requests and associated processes
• Support processor due diligence and vendor privacy reviews
• Maintain privacy notices, policies, and supporting documentation
• Assist with international data transfer assessments and documentation

Legal Operations & Contract Management

• Support the management of standard commercial agreements, including NDAs, DPAs, supplier agreements, and advisory contracts
• Maintain contract registers and renewal tracking
• Manage template libraries and version control
• Assist with legal due diligence activities relating to partnerships, procurement, and fundraising initiatives
• Coordinate document execution and filing processes

Governance & Policy Management

• Draft, maintain, and update internal policies and governance documentation
• Coordinate policy reviews and staff acknowledgements
• Support management reporting on compliance and risk matters
• Act as a first point of contact for internal compliance-related queries
• Escalate legal matters appropriately to the General Counsel

Ideal Candidate Profile

You are likely to be a strong fit if you have:

• 4–8 years' experience within privacy, compliance, legal operations, governance, regulatory affairs, or similar functions
• Strong practical experience operating GDPR compliance processes
• Experience managing compliance programmes or compliance-related activities
• Experience supporting legal operations and contract administration
• Excellent written communication and documentation skills
• Strong organisational skills and attention to detail
• The ability to work independently whilst exercising sound professional judgement

Preferred Experience

The following would be advantageous:

• CIPP/E, CIPM, CIPT, or similar privacy/compliance certifications
• Experience within SaaS, cybersecurity, fintech, or regulated technology environments
• Exposure to ISO 27001 or SOC 2 programmes
• Familiarity with NIS2, ePrivacy, AI Act, or related regulatory frameworks
• Experience using contract lifecycle management tools or legal operations platforms
• Experience supporting international privacy and compliance activities

What Makes Someone Successful in This Role

Organised & Proactive

You are comfortable managing multiple priorities and ensuring important compliance activities remain on track.

Commercially Aware

You understand how compliance supports business growth and can balance risk with pragmatism.

Strong Communicator

You can translate complex regulatory concepts into practical guidance for non-specialists.

Independent & Accountable

You are comfortable working remotely and taking ownership of your responsibilities.

Detail-Oriented

You enjoy building structure, maintaining standards, and ensuring nothing falls through the cracks.

Engagement Structure

This opportunity is structured as a flexible fractional engagement and is designed for professionals interested in contributing to the development and growth of an emerging technology business.

Further details regarding the engagement structure will be discussed with shortlisted candidates.

On Offer

• Flexible remote working
• Opportunity to work alongside experienced legal, cybersecurity, technology, and commercial leaders
• Significant ownership and responsibility
• Exposure to complex international privacy and compliance matters
• Opportunity to contribute to the development of a growing technology platform