Privacy & Data Protection Counseler (AI & SaaS)

The Senior Privacy Specialist role will lead and operationalise Ultimo’s global data protection program across the EU, UK and US. This role will play a critical part in ensuring that our AI-augmented SaaS business operates in compliance with applicable data protection and AI-related regulatory frameworks while enabling commercial growth and product innovation. This position requires commercial acumen, a collaborative mindset and deep practical experience in privacy program management for SaaS and AI technology companies. It is a real opportunity to blend strategy with hands on impact.

If you thrive in collaborative environments, enjoy solving complex legal and commercial challenges in technology and want to help shape the privacy direction of a high-growth AI-first company, we would love to hear from you.

Domain:

Privacy Program Leadership

• Lead and maintain Ultimo Group’s global privacy framework across EU, UK and US jurisdictions
• Act as internal subject matter expert on GDPR, UK GDPR, U.S. state privacy laws (e.g., CCPA/CPRA), and emerging AI/data governance regulations where applicable
• Develop, implement and continuously improve privacy policies, procedures and standards
• Conduct and oversee DPIAs, TIAs, TRAs and legitimate interest assessments
• Manage records of processing activities (RoPA) and data mapping initiatives
• Oversee data subject rights processes and ensure regulatory timelines are met
• Support incident response processes, including assessment and coordination of data breach notifications

Governance & Compliance

• Monitor regulatory developments across EU, UK and U.S. markets, including privacy-related developments in AI governance
• Support internal audit activities and external compliance certifications (e.g., ISO 27001, SOC 2).
• Develop and deliver privacy training to internal stakeholders
• Support vendor risk management and third-party due diligence from a privacy perspective
• Contribute to enterprise risk management initiatives relating to data protection and information governance

Transactional Support

• Provide hands-on legal advice and guidance for privacy related issues in commercial transactions
• Review and negotiate Data Processing Agreements
• Provide pragmatic, commercially aligned guidance on customer privacy questionnaires and RFIs
• Partner with Product and Engineering teams to embed privacy-by-design and privacy-by-default principles
• Advise on cross-border data transfer mechanisms and evolving international data transfer requirements

Special Projects

• Support integration of privacy programs in post-acquisition scenarios
• Contribute to AI governance initiatives and responsible data use frameworks
• Assist in the development of scalable compliance infrastructure as the business grows internationally
• Collaborate cross-functionally with Legal, Security, IT, Product, HR and Marketing on new initiatives
• Assist with development of privacy playbooks

• 6+ years in commercial privacy roles, particularly in high-growth software/SaaS/ tech companies, balancing legal risk with commercial objectives
• Strong regulatory knowledge (GDPR, UK GDPR, CCPA/CPRA and related U.S. state privacy laws), commercial awareness, and the ability to translate complex regulatory requirements into scalable operational processes.
• An interest in SaaS commercial transactions (customer/vendor negotiations related to privacy) or broader compliance program development would be a strong advantage.
• Experience working with privacy program design and implementation
• Post-acquisition integration work
• Practical understanding of legal issues related to SaaS business models, AI technology, and data protection
• Excellent interpersonal and communication skills with the ability to work cross-functionally and influence with diplomacy
• Prior experience working on M&A integrations or supporting post-close transition work is highly desirable
• Working with the highest degree of ethics and integrity
• Comfortable working in a fast-paced, high-growth and evolving environment