CrawlJobs Logo

Legal and Data Privacy Counsel

Poland, Krakow Employment contract · Job Posted May 27, 2026
Apply Position
Job Link Share

Job Description

Keepit seeks a Legal and Data Privacy Counsel to join our team in Krakow, Poland. We seek a detail-oriented legal professional with expertise in data privacy to join our legal team. You will work closely with legal colleagues, product teams, and business units to draft and negotiate contracts and ensure compliance with data privacy regulations.

Job Responsibility

  • Develop, implement, and maintain data protection policies and procedures in line with relevant laws and regulations
  • Collaborate with cross-functional teams to conduct audits and assessments of processing activities and vendors, identifying potential data protection risks
  • Drive legal tech adoption within the legal department
  • Provide legal guidance for procurement and sales
  • Offer advice on the lawful and responsible use of data, ensuring compliance with data protection legislation and internal policies
  • Investigate data breaches or privacy incidents in collaboration with our DPO function, documenting findings, and suggesting corrective actions
  • Handle requests efficiently and compliantly, maintaining accurate records and documentation
  • Stay updated on data protection laws and regulations, proactively communicating changes and implications to the organisation
  • Supporting security teams with privacy aspects of obtaining security certifications and completing security audits (ISO 270001/SOC2)

Requirements

  • Master’s degree in law
  • Experience as a legal counsel specialising in data privacy, either in-house or at a law firm
  • Thorough understanding of data protection laws and regulations, particularly GDPR
  • Ability to collaborate across departments and organisational levels
  • Strong communication and training facilitation skills
  • Very high level of written and spoken English

Nice to have

  • Familiarity with SaaS business models and cloud service providers’ data processing practices is advantageous
  • Ability to communicate in other languages, for example, Danish, French, and German

What we offer

  • 4 additional working days of vacation leave per full calendar year
  • 3 days of internal sick leave without a doctor`s note
  • Health and Life Insurance
  • Employee Capital Plan (PPK)
  • Multisport card compensation
  • Coverage of professional training sessions, meetups, etc.
  • English-speaking club with native speakers
  • Polish language classes
  • Internet and Glasses reimbursement
  • Cosy office in Krakow city centre (Długa, 72) with beverages, fruit, and cookies
  • Winter and summer parties, events, team-buildings

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Legal and Data Privacy Counsel

8 matching positions

Senior Legal Counsel - Data Privacy & Compliance

We’re hiring a Senior Legal Counsel dedicated to Data Privacy & Compliance - som...
Location
Location
United Kingdom , Dunstable
Salary
Salary:
Not provided
whitbreadinns.co.uk Logo
Whitbread Inns
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep expertise in UK data protection law (EU desirable)
  • Experience handling large volumes of consumer and/or employee data (B2C essential)
  • Strong policy‑writing skills — capable of building frameworks from scratch and owning them
  • Experience in drafting and implementing procedures, controls and compliance programmes
  • Comfortable engaging with senior stakeholders and influencing across the business
  • Ability to operate with a high level of autonomy and enthusiasm
  • Private‑practice background welcome
  • in‑house experience is a bonus, not a requirement
Job Responsibility
Job Responsibility
  • Lead on UK data protection compliance, advising across Whitbread’s end‑to‑end consumer and employee data lifecycle
  • Develop, maintain and embed group‑wide policies, procedures and data governance frameworks
  • Manage and optimise our relationship with the UK’s outsourced DPO
  • Provide best‑practice guidance to operations in Ireland, Germany and China
  • Deliver DPIAs, ROPAs, DSAR handling, and data‑related litigation management
  • Advise on CRM, digital marketing, cookies, and marketing consent
  • Draft and negotiate data processing/sharing agreements
  • Guide IT teams to ensure privacy is embedded from the very beginning of any change or initiative
  • Own and evolve a broad compliance portfolio, including: Code of Conduct governance and communication
  • Competition law risk and training
What we offer
What we offer
  • bonus
  • 10% matched pension
  • health care
Read More
Arrow Right

Counsel, Privacy, Ai, And Data Protection

The Counsel for Privacy, AI, and Data Protection serves as the enterprise subjec...
Location
Location
United States , Lexington
Salary
Salary:
150000.00 - 175000.00 USD / Year
valvolineglobal.com Logo
Valvoline Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor (JD) degree from an accredited law school and active license to practice law in at least one U.S. jurisdiction
  • Minimum of 8-12 years of legal experience, with significant focus on privacy, data protection, cybersecurity, and/or technology law
  • Demonstrated expertise in U.S. and global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA) and strong familiarity with emerging AI regulatory requirements
  • Experience advising on AI/ML technologies, data-driven business models, or digital products, including governance and risk management considerations
  • Proven experience building or supporting global privacy programs and operationalizing compliance frameworks (e.g., DPIAs, DSARs, data mapping)
  • Strong experience partnering with Product, Engineering, IT, and Security teams to translate legal requirements into practical solutions
  • Demonstrated ability to operate independently, manage complex cross-functional initiatives, and provide strategic, risk-based legal advice
  • Excellent communication, negotiation, and stakeholder engagement skills, with the ability to influence senior leaders
  • Ability to travel (approximately 10-20%) to support global business initiatives and team engagement
  • Collaborate effectively across global time zones, providing support to regional stakeholders and participating in meetings outside standard business hours as needed to support a globally distributed organization
Job Responsibility
Job Responsibility
  • Accountable for the design, implementation, and ongoing effectiveness of Valvoline's global privacy program, including governance structure, policies, and operational processes
  • Owns enterprise interpretation and application of global privacy laws (e.g., GDPR, CCPA/CPRA), establishing company-wide standards and guidance
  • Accountable for core privacy program operations, including DPIAs/PIAs, DSAR processes, data mapping, and records of processing activities, ensuring they are scalable, auditable, and consistently executed
  • Establishes and monitors program KPIs and metrics to measure compliance, maturity, and operational effectiveness
  • drives remediation where gaps exist
  • Leads integration of privacy-by-design principles into business processes, systems, and product development, ensuring consistent adoption across functions
  • Accountable for the enterprise AI governance framework, including policy development, risk classification models, and required controls
  • Owns the legal review and risk determination framework for AI/ML use cases, including defining approval thresholds and escalation criteria
  • Ensures AI initiatives meet regulatory, ethical, and internal governance standards, providing final legal guidance on high-risk or ambiguous use cases
  • Translates global AI regulatory developments into enforceable internal requirements, ensuring timely adoption across the enterprise
What we offer
What we offer
  • Health insurance plans (medical, dental, vision)
  • Health Savings Account (with an employer-base deposit and match)
  • Flexible spending accounts
  • Competitive 401(k) with generous employer base deposit and match
  • Incentive opportunity
  • Life insurance
  • Short- and long-term disability insurance
  • Paid vacation and holidays
  • Employee Assistance Program
  • Employee discounts
  • Fulltime
Read More
Arrow Right

Counsel, Privacy, AI, and Data Protection

Why Valvoline Global Operations? At Valvoline Global Operations, we're proud to ...
Location
Location
United States , Lexington
Salary
Salary:
150000.00 - 175000.00 USD / Year
valvoline.com Logo
Valvoline
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor (JD) degree from an accredited law school and active license to practice law in at least one U.S. jurisdiction
  • Minimum of 8–12 years of legal experience, with significant focus on privacy, data protection, cybersecurity, and/or technology law
  • Demonstrated expertise in U.S. and global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA) and strong familiarity with emerging AI regulatory requirements
  • Experience advising on AI/ML technologies, data-driven business models, or digital products, including governance and risk management considerations
  • Proven experience building or supporting global privacy programs and operationalizing compliance frameworks (e.g., DPIAs, DSARs, data mapping)
  • Strong experience partnering with Product, Engineering, IT, and Security teams to translate legal requirements into practical solutions
  • Demonstrated ability to operate independently, manage complex cross-functional initiatives, and provide strategic, risk-based legal advice
  • Excellent communication, negotiation, and stakeholder engagement skills, with the ability to influence senior leaders
  • Ability to travel (approximately 10–20%) to support global business initiatives and team engagement
  • Collaborate effectively across global time zones, providing support to regional stakeholders and participating in meetings outside standard business hours as needed to support a globally distributed organization
Job Responsibility
Job Responsibility
  • Accountable for the design, implementation, and ongoing effectiveness of Valvoline's global privacy program, including governance structure, policies, and operational processes
  • Owns enterprise interpretation and application of global privacy laws (e.g., GDPR, CCPA/CPRA), establishing company-wide standards and guidance
  • Accountable for core privacy program operations, including DPIAs/PIAs, DSAR processes, data mapping, and records of processing activities, ensuring they are scalable, auditable, and consistently executed
  • Establishes and monitors program KPIs and metrics to measure compliance, maturity, and operational effectiveness
  • drives remediation where gaps exist
  • Leads integration of privacy-by-design principles into business processes, systems, and product development, ensuring consistent adoption across functions
  • Accountable for the enterprise AI governance framework, including policy development, risk classification models, and required controls
  • Owns the legal review and risk determination framework for AI/ML use cases, including defining approval thresholds and escalation criteria
  • Ensures AI initiatives meet regulatory, ethical, and internal governance standards, providing final legal guidance on high-risk or ambiguous use cases
  • Translates global AI regulatory developments into enforceable internal requirements, ensuring timely adoption across the enterprise
What we offer
What we offer
  • Health insurance plans (medical, dental, vision)
  • Health Savings Account (with an employer-base deposit and match)
  • Flexible spending accounts
  • Competitive 401(k) with generous employer base deposit and match
  • Incentive opportunity
  • Life insurance
  • Short- and long-term disability insurance
  • Paid vacation and holidays
  • Employee Assistance Program
  • Employee discounts
  • Fulltime
Read More
Arrow Right

Legal Counsel, Privacy & Security

We are looking for a passionate and collaborative attorney to join our dynamic t...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
comcastadvertising.com Logo
Comcast Advertising
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 3-5 years combined legal experience at a top law firm and/or in-house legal department, with at least 1-3 years of privacy and information security experience
  • Experience with the details and practical application of current European and UK privacy and information security legislation, including an in depth understanding of the GDPR, experience with the ePrivacy Directive, NIS2, the Cyber Resilience Act, and other related laws
  • Demonstrated transactional experience, including reviewing, drafting and negotiating privacy and data protection contract terms and agreements, data processing, usage, information security and/or transfer agreements
  • Experience with conducting privacy impact assessments and advising on applicable privacy and information security legal requirements
  • The ability to interpret complex legal, regulatory, and technical requirements and translate them into practical business guidance
  • Ability to manage multiple projects and meet deadlines with consistently high-quality results
  • Ability to work independently with moderate supervision
  • Ability to work effectively with colleagues, management, and operations personnel
  • A pragmatic, risk-based approach and collaborative mindset
  • Strong academic credentials
Job Responsibility
Job Responsibility
  • Handle privacy and information security-related inquiries from a wide range of groups across the company and provide actionable advice and legal counsel to facilitate privacy and information security compliance with the Company’s policies, standards and applicable laws and best practices
  • Evaluate various Comcast programs and initiatives considering applicable privacy and information security requirements
  • Work closely with enterprise and business unit stakeholders to embed privacy and information security principles into business plans and strategic initiatives during the design and execution process
  • Assist in the creation, maintenance and implementation of policies, processes, data inventories and records of processing, and associated documentation relating to processing of data
  • Review of company practices to ensure consistency with existing policies and other internal privacy and information security governance documents
  • Monitor, summarize and help to implement relevant requirements driven by developments in privacy and information security related laws, regulations, standards, and best practices in the UK, EU and other international jurisdictions as needed (such as GDPR, ePrivacy Directive, NIS2, Cyber Resilience Act, and self-regulatory organizations such as DAA and NAI)
  • Provide practical, proactive legal counsel on privacy and information security issues, including data governance, data retention, data minimization, and incident response matters
  • Advise on post-acquisition privacy and information security integration efforts for newly acquired entities
  • Assist with Privacy Impact and Risk Assessments relating to new businesses and initiatives involving processing of personal information
  • Conduct awareness and training efforts as needed and/or required to increase employee understanding of company privacy policies, data handling and information security practices and procedures, and legal obligations
What we offer
What we offer
  • Medical, prescription, vision, and dental insurance for eligible employees
  • 401(k) savings plan with dollar-for-dollar matching up to the first 6% of your pay
  • Paid time off including eight observed company holidays and flex time
  • Exclusive perks + discounts, including tuition assistance, commuter benefits and more
  • Fulltime
Read More
Arrow Right

Counsel – Privacy & Data Protection

Mastercard’s global Commercial and New Payment Flows (CNPF) Privacy team is seek...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Qualified lawyer with a strong academic foundation and solid legal training
  • Additional certifications (e.g., IAPP) are a plus
  • Keen interest in global data privacy developments and a working knowledge of privacy and data protection frameworks (e.g., GDPR
  • familiarity with others like CCPA is helpful but can be learned on the job) with some practical experience applying them, previous inhouse or technology/privacy exposure is beneficial
  • Familiarity with financial services, payments, or digital products is preferred, or a strong willingness to learn about these sectors
  • Experience with privacy platforms such as OneTrust is an advantage
  • Curiosity about digital technologies and an interest in how they intersect privacy and data governance
  • Proactive, practical, and eager to translate legal requirements into clear, usable guidance with support from senior team members
  • Strong verbal and written communication skills, with the ability to simplify complex information for non-legal audiences
  • Highly organized, detail-oriented, and able to manage multiple tasks in a fast-paced environment
Job Responsibility
Job Responsibility
  • Provide day to day privacy support to business teams, handling product queries and operational issues, and escalating complex matters where needed
  • Support the CNPF privacy team, including Move (Mastercard Send and Cross Border Services), by preparing guidance, assessments, and initial reviews for product initiatives and market expansion
  • Advise across the broader CNPF space (including B2B payments and SME solutions) on data use, AI enabled products, data flows, and controller/processor roles in multi party ecosystems
  • Embed Privacy by Design into the product lifecycle through initial impact assessments, risk screenings, and alignment with Mastercard’s privacy and AI governance frameworks
  • Assist with responses to government data requests, RFIs, and CDD inquiries by gathering inputs, preparing drafts, and ensuring compliance with internal and legal requirements
  • Support contracting by drafting and reviewing standard data protection terms, preparing for negotiations, and escalating higher risk issues
  • Monitor regulatory developments and contribute to legal scans, providing clear, practical summaries of key impacts
  • Help build privacy awareness across the business, including developing training materials and supporting capability building efforts
  • Collaborate across teams to ensure consistent application of privacy requirements and effective follow through on actions
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Have worked as a DPO
  • Have successfully engaged with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • Fulltime
Read More
Arrow Right

Privacy Legal Counsel Intern

As an intern within the DPO (Data Protection Officer) team, you will be responsi...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Specialization in personal data law or new technologies law (Master 2)
  • Prior experience in a legal department, law firm handling data protection issues, or a data protection authority
  • Extremely rigorous with a strong sense of organization
  • Capable of managing multiple projects simultaneously
  • Enjoy working in a team with excellent interpersonal skills
  • Not afraid to interact directly with operational staff
  • Fluent in English
  • Proficient in Google Workspace (Docs, Sheets, Slides)
Job Responsibility
Job Responsibility
  • Participate in monitoring the compliance program for each group team and in compliance actions
  • Handle requests from customers and employees regarding their personal data
  • Contribute to the mapping of processing operations and data flows
  • Update the record of processing activities (ROPA)
  • Participate in negotiating personal data clauses in contracts
  • Contribute to the monitoring of any ongoing litigation
  • Conduct legal monitoring on current topics and draft internal communications
  • Respond to all questions from teams regarding personal data
  • Support all members of the legal department on a wide variety of subjects
  • Fulltime
Read More
Arrow Right

Senior Corporate Counsel, Privacy and Digital Safety

The video game industry is at an inflection point where developing technologies,...
Location
Location
United States , Redmond
Salary
Salary:
147000.00 - 258000.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor Degree or international equivalent degree AND 6+ years experience as a practicing attorney OR equivalent experience
  • Active license to practice law in a jurisdiction and capable of meeting admission requirements in relevant jurisdiction
  • 6+ years experience with consumer privacy, data practices, and information governance, as well as digital product-to-market in the consumer technology or entertainment industries
  • and strong experience advising on GDPR and CCPA requirements
  • 6+ years’ experience practicing as a commercial business attorney drafting and negotiating a broad variety of transactional agreements
  • Experience in providing legal counsel for the gaming and entertainment industry
Job Responsibility
Job Responsibility
  • Trusted advisor and primary privacy and data protection contact for the Gaming legal team, our gaming studios, Xbox platform, and marketing teams
  • Support of game development and deployment, marketing/ad-tech, central back-end databases, marketplace/commerce tools, in-game social and communication tools
  • Provide guidance on GDPR, CCPA and other compliance programs, including records of data processing activities, privacy risk assessment, data protection impact assessments (DPIAs) and legitimate interest impact assessments
  • Support child safety and COPPA related matters, compliance with various domestic and international age assurance and player safety laws and regulations
  • Prepare, maintain and update privacy documentation, including data protection agreements, standard contractual clauses, data retention schedules and internal policies
  • Monitor and stay up-to-date on key privacy issues in the gaming and wider technology industries, and take leadership for driving innovative privacy and digital safety solutions
  • Provide front-line counseling and guidance to business executives, engineers, and game designers on a broad range of complex and developing privacy and safety laws relating to game development, online safety, monetization mechanics, intellectual property, marketing, and regulatory compliance
  • Apply strategic thinking and find creative business-oriented solutions to legal issues, balancing legal risks against business interests in complex and ambiguous situations
  • Lead cross-group projects related to privacy and digital safety legal matters in an efficient manner
  • Provides recommendations to improve efficiency within work groups and in the delivery of legal services to clients
  • Fulltime
Read More
Arrow Right