Privacy Counsel — Office of General Counsel, London

Senior in-house privacy counsel role within the Office of General Counsel for a major international law firm. The post-holder will support development, implementation and oversight of the firm-wide privacy programme covering EU/UK GDPR, US state/federal requirements and other international privacy regimes.

Key responsibilities include conducting DPIAs and PRA work, managing data subject requests and incident response, drafting and negotiating data processing/transfer agreements, supporting vendor and third‑party oversight, and delivering privacy training and awareness across the business.

The role will engage cross-functionally with information security, IT, HR, operations and other stakeholders and may act as the firm’s statutory DPO or primary liaison with data protection authorities where required.

• Qualified lawyer with valid licence to practise; minimum ~6 years’ relevant post-qualification experience.
• Strong practical knowledge of EU/UK GDPR and experience or aptitude for US and other international privacy regimes.
• Experience with DPIAs/PRAs, data breach handling and regulatory liaison, and end‑to‑end management of data subject access requests.
• Proven ability drafting/negotiating data processing, transfer agreements and privacy clauses in commercial contracts.
• Experience advising on cross‑border data transfers and privacy compliance for global organisations; familiarity with privacy-by-design and privacy training delivery.
• Excellent stakeholder management, project management and communication skills; able to translate legal requirements for non‑legal audiences.
• Privacy certifications (CIPP/CIPT/ISEB) preferred.