Associate — Privacy, Cyber & Data Protection (London)

Opportunity for an experienced Privacy, Cyber and Tech Regulatory Associate to join a leading London team advising on data protection, cyber incident response and emerging digital regulation. The role sits within a compact, specialist group that supports global mandates for major brands and technology clients.

Day-to-day work will include advising on privacy compliance frameworks and international data transfers, managing cross-border breach response and regulatory engagement, drafting and reviewing privacy policies and contractual data provisions, and supporting projects on AI, online safety and other new digital regulation.

The role is office-based/hybrid in London and offers exposure to international instructions, client-facing responsibility, and opportunities for business development, coaching junior lawyers and thought leadership.

• Typically 4–6 years PQE in privacy, cyber or technology regulatory work (applications outside this range considered if suitable).
• Proven experience advising on privacy/data protection matters, including drafting policies, DSARs, DPIAs and contractual data clauses.
• Experience with cross-border data transfers and coordinating international teams; exposure to large-scale cyber incident response or regulatory investigations preferred.
• Familiarity with AI risk, online safety or recent digital regulations (e.g. Data Act, DSA, NIS2) is highly desirable.
• Strong commercial judgment, client management skills, and ability to lead project teams; willingness to contribute to BD and mentor junior colleagues.