 |  |  |  |
Our Client
Our client stands at the forefront of iGaming, focused on sustainability, responsibility, and long-term development. Their ambition is nothing less than to transform the sector—bringing progress that benefits players, strengthens the industry, and inspires the entertainment world at large.
The Role of the Data Privacy Analyst
They are looking for a knowledgeable and proactive Data Privacy Analyst to join their Data Protection Office. This mid-senior level role is ideal for an experienced privacy professional who is comfortable working independently, managing key aspects of the privacy program, and contributing to the ongoing maturity of our global data protection framework. Reporting to Data Protection Officer, the Privacy Analyst will play a pivotal role in ensuring compliance with applicable data protection laws, including the GDPR, ePrivacy Directive, and other international regulations.
Key Responsibilities
- Manage and coordinate the response to data subject rights requests (DSARs), including access, erasure, and portability, ensuring legal deadlines are met and operational risks are mitigated.
- Maintain and enhance the Record of Processing Activities (RoPA), including working closely with business units to document data flows and processing operations.
- Conduct and review Data Protection Impact Assessments (DPIAs) and Legitimate Interest Assessments (LIAs), advising business stakeholders on risks and mitigation strategies.
- Support or lead vendor privacy risk assessments, including reviewing DPAs, SCCs, TIAs, and monitoring third-party compliance.
- Participate in the investigation and documentation of data breaches or incidents, including root cause analysis, risk assessments, and regulatory notification support.
- Collaborate with internal stakeholders across Legal, Security, HR, Marketing, and IT to embed privacy-by-design into products, services, and operations.
- Assist in regulatory readiness projects and maintain awareness of evolving privacy laws (e.g., GDPR, CCPA/CPRA, LGPD, PDPA, etc.).
- Draft and update privacy notices, internal procedures, and awareness materials in collaboration with the DPO office.
- Monitor and analyze trends in privacy enforcement, industry best practices, and legislative developments to support continuous program improvement.
Key Skills and Qualifications:
- 2–5 years of experience in privacy, data protection, legal, compliance, or risk roles.
- Solid understanding of GDPR and international privacy laws (CCPA, LGPD, etc.).
- Experience conducting DPIAs, vendor assessments, and responding to DSARs.
- Strong legal/technical acumen and ability to translate privacy requirements into practical actions.
- Excellent written and verbal communication skills, including experience with policy writing and stakeholder engagement.
- Self-starter with strong organizational and time management skills.
- Professional certifications such as CIPP/E, CIPP/US, CIPM, or equivalent.
- Experience in highly regulated or data-intensive industries (e.g., gaming, finance, fintech).
- Familiarity with GRC tools, privacy management software (e.g., OneTrust, TrustArc), or IT risk platforms.
- Experience contributing to regulatory audits, due diligence exercises, or internal investigations.
What's on Offer
- Excellent work environment
- Attractive salary package
- Annual incentive Bonus
- Monetary vouchers on Birthdays and other special occasions
- Fully equipped kitchen and in-house entertaining space
- Options to enrol in Company's medical insurance plan
- Possibilities to enrol in Company's pension plan
- Exciting company activities including monthly lunches, monthly corporate gatherings, an intercompany football team, competitions, daily snacks and many other activities.
- Casual Dress Code
- A chance to advance professionally inside one of the world's largest iGaming organisations.
| | | |
