Data Protection Expert in Germany at Jobgether

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Data Protection Expert based in Germany.

This role plays a critical part in shaping and maintaining a robust data privacy and compliance framework across a global organization operating in highly regulated environments. You will ensure that personal data is handled responsibly and in line with international regulations such as GDPR and UK data protection laws. The position sits within a corporate governance and legal function, where you will act as a key advisor to multiple business units.
You will contribute directly to strengthening privacy-by-design principles across systems, products, and operational processes.
The environment is highly cross-functional, involving collaboration with legal, IT, security, compliance, and business teams.
This is a hands-on role combining regulatory expertise, operational execution, and strategic advisory responsibilities.
You will also play a key role in embedding a culture of privacy awareness and accountability across the organization.

• You will monitor and ensure compliance with global data protection regulations, including GDPR, UK Data Protection Act, and other applicable frameworks, while advising stakeholders on regulatory interpretation and practical implementation. You will also embed privacy-by-design principles across systems and processes.
• You will conduct and maintain Data Protection Impact Assessments (DPIAs), ensuring risks are properly identified, documented, and mitigated in line with regulatory expectations and internal governance standards.
• You will manage and maintain Records of Processing Activities (RoPA), while reviewing data processing operations to ensure ongoing compliance and alignment with internal privacy frameworks.
• You will act as a key contact point for data protection authorities, coordinating responses and ensuring timely, accurate communication with regulators across jurisdictions.
• You will oversee data subject rights requests (DSARs), ensuring proper handling of access, rectification, erasure, and other requests within statutory timelines.
• You will support data breach management activities, including incident assessment, containment, reporting, and post-incident review in collaboration with security and IT teams.
• You will draft, review, and maintain privacy-related contractual documentation, including DPAs, NDAs, SCCs, and other data protection agreements, ensuring robust safeguards for cross-border data transfers and third-party engagements.
• You will contribute to privacy training, policy development, and maturity assessments to strengthen organizational awareness and long-term compliance capability.

• You bring a relevant academic background in law, information governance, compliance, IT, or a related field, combined with proven professional experience in data protection or privacy-focused roles, ideally within regulated industries such as financial services.
• You have strong expertise in GDPR, UK Data Protection Act, and broader EU/international privacy regulations, with the ability to translate legal requirements into practical business guidance.
• You are experienced in conducting DPIAs, managing RoPA, and supporting end-to-end privacy governance frameworks within complex organizations.
• You have strong stakeholder management skills and can effectively advise cross-functional teams including legal, IT, compliance, and business leadership.
• You demonstrate excellent analytical, communication, and documentation skills, with attention to detail and the ability to manage multiple priorities.
• You are proactive, structured, and capable of leading or contributing to cross-functional initiatives that improve privacy maturity and compliance posture.

• Competitive compensation aligned with experience and market standards
• Fully remote working arrangement with flexibility
• Opportunity to work on global data protection and compliance frameworks
• Exposure to international regulatory environments and cross-border operations
• Professional development and continuous learning opportunities
• Collaborative, cross-functional working environment
• Strong focus on privacy culture, governance, and ethical data use
• Opportunity to influence enterprise-wide privacy strategy and frameworks