Alpinestars is looking for an experienced and proactive Privacy Officer to lead and strengthen our organisation's privacy compliance program, ensuring full compliance with European and international privacy regulations, including the EU General Data Protection Regulation (GDPR), and other applicable national data protection laws.
Key responsibilities
Privacy compliance and governance
* Own and evolve the privacy compliance framework (GDPR and related laws)
* Drive ongoing compliance across business units, identify risks early, improve processes continuously
* Lead privacy legal work, DPAs, policies, LIAs, DPIAs, data transfers, vendor reviews
* Maintain ROPAs (GDPR Article 30), coordinate audits and compliance reviews
Policies and training
* Draft and maintain internal privacy policies, notices, procedures
* Deliver training and awareness programs
* Embed privacy by design and privacy by default in products, services, and new tech
Data subject rights and incidents
* Manage DSARs within statutory timelines
* Lead breach investigation, documentation, and reporting, coordinate with IT and cybersecurity
* Maintain privacy incident response protocols and prevention measures
Stakeholder management
* Primary contact for supervisory authorities
* Partner with IT Security, Legal, HR, Marketing, Digital, Commercial to embed privacy
* Advise leadership on regulatory developments, emerging tech topics (wearables, biometrics, AI analytics)
Qualifications and experience
* Degree in Law, Compliance, Information Security, or similar
* 5+ years in privacy, data protection, or compliance, ideally in an EU based environment
* Strong GDPR and EU privacy knowledge, ePrivacy understanding is a plus
* Hands on experience with DPIAs, DSARs, incidents, vendor and transfer assessments
* Privacy certification preferred (CIPP/E, CIPM, CDPO), ISO 27001 or similar is a plus
* Solid understanding of cybersecurity fundamentals
* Fluent English
Skills and competencies
* Strong mix of legal, technical, and organisational privacy expertise
* Excellent stakeholder management across countries and business units
* Able to turn complex regulation into pragmatic, business friendly processes
* Analytical, detail oriented, proactive
What we offer
* High impact role with direct ownership of the privacy agenda
* Cross functional scope, global stakeholder exposure
* Support for professional development and certifications
* Competitive compensation package and benefits