As a Privacy Engineer in the Legal Department, you will collaborate with cross-functional teams to ensure that privacy and data protection principles are embedded into the design and implementation of our systems and processes. Your expertise will help the organization navigate complex privacy challenges, ensuring compliance with global data protection regulations and fostering trust with our stakeholders.
What You’ll Do
Data Mapping and Inventory Management: Integrate and maintain all data inventory, data mapping, and processing activities platforms across the company technology stack. Privacy by Design Implementation: Work to align advanced technologies with Privacy by Design principles from the initial stages of development, ensuring data use meets established regulatory compliance needs by identifying compliance gaps. Cross-Functional Collaboration: Interact with internal privacy program managers, data governance, customer support, security, and engineering in driving data protection requirements. Training and Awareness: Conduct privacy training sessions and develop materials to raise awareness about privacy best practices across the organization. Data Deletion and Retention: Assist in building automations related to the deletion of user data and other personal data records within enterprise applications.Website Compliance: Influence overall privacy compliance strategy related to marketing and ad tech solutions, including the use of privacy-enhancing technologies and cookie management tools. Efficiency Gains within Legal and Compliance: Identify and expand the engineering capabilities within the Legal Department by utilizing your experience and knowledge to gain operational efficiencies on key compliance objectives.What You’ll Bring
Bachelor’s or Master’s degree in Computer Science, Information Technology, or a related field, or 3-5 years of experience in privacy engineering or technical program management. Experience with tools such as OneTrust, Transcend and other similar platforms across use cases such as data mapping, data discovery, privacy impact assessments, consent/preference management, cookie compliance, data subject rights, and more. Proven experience in privacy engineering, data protection, or a related technical role. Experience in programming languages such as SQL and JavaScript. Excellent analytical skills and attention to detail. Effective communicator, capable of translating legal requirements into engineering solutions and conveying complex technical/engineering principles to non-technical stakeholders.Nice to Have
IAPP Certified Information Privacy Technologist (CIPT) certification or equivalent. Awareness and interest in privacy laws and regulations, including GDPR, CCPA, LGPD, ePrivacy Directive, and others relevant to the organization's operations.About the team
GitLab Privacy is a mighty team of four spanning Europe and America. We are dedicated to transforming complex regulations into practical solutions, always fine-tuning our privacy program to stay ahead of the curve. We sit in the Legal and Corporate Affairs department and our overview page can be found here: https://handbook.gitlab.com/handbook/legal/privacy/ How GitLab will support you Benefits to support your health, finances, and well-being All remote, asynchronous work environment Flexible Paid Time Off Team Member Resource Groups Equity Compensation & Employee Stock Purchase Plan Growth and Development Fund Parental leave Home office supportPlease note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.