Alpinestars is looking for an experienced and proactive Privacy Officer to lead and strengthen our organisation's privacy compliance program, ensuring full compliance with European and international privacy regulations, including the EU General Data Protection Regulation (GDPR), and other applicable national data protection laws.
Key responsibilities
Privacy compliance and governanceOwn and evolve the privacy compliance framework (GDPR and related laws)Drive ongoing compliance across business units, identify risks early, improve processes continuouslyLead privacy legal work, DPAs, policies, LIAs, DPIAs, data transfers, vendor reviewsMaintain ROPAs (GDPR Article 30), coordinate audits and compliance reviews
Policies and trainingDraft and maintain internal privacy policies, notices, proceduresDeliver training and awareness programsEmbed privacy by design and privacy by default in products, services, and new tech
Data subject rights and incidentsManage DSARs within statutory timelinesLead breach investigation, documentation, and reporting, coordinate with IT and cybersecurityMaintain privacy incident response protocols and prevention measures
Stakeholder managementPrimary contact for supervisory authoritiesPartner with IT Security, Legal, HR, Marketing, Digital, Commercial to embed privacyAdvise leadership on regulatory developments, emerging tech topics (wearables, biometrics, AI analytics)
Qualifications and experience
Degree in Law, Compliance, Information Security, or similar5+ years in privacy, data protection, or compliance, ideally in an EU based environmentStrong GDPR and EU privacy knowledge, ePrivacy understanding is a plusHands on experience with DPIAs, DSARs, incidents, vendor and transfer assessmentsPrivacy certification preferred (CIPP/E, CIPM, CDPO), ISO 27001 or similar is a plusSolid understanding of cybersecurity fundamentalsFluent English
Skills and competenciesStrong mix of legal, technical, and organisational privacy expertiseExcellent stakeholder management across countries and business unitsAble to turn complex regulation into pragmatic, business friendly processesAnalytical, detail oriented, proactive
What we offer
High impact role with direct ownership of the privacy agendaCross functional scope, global stakeholder exposureSupport for professional development and certificationsCompetitive compensation package and benefits