Legal Counsel, Privacy

Employment Type:

Location Type:

Salary:

Position Overview

GitLab is seeking a Legal Counsel, Privacy, to focus primarily on EMEA privacy, with a particular emphasis on employee privacy, marketing, and entity compliance. While this role will have a strong EMEA focus, there will be opportunities to engage in all aspects of privacy globally. The ideal candidate will possess a deep understanding of global privacy laws, especially EU regulations, and have proven experience advising on and implementing data privacy compliance strategies with cross-functional teams, employing a practical, risk-based approach. This position reports to the Senior Managing Legal Counsel, Privacy.

GitLab is an open-core software company developing a comprehensive AI-powered DevSecOps Platform utilized by over 100,000 organizations. Our mission is to empower everyone to contribute to and co-create the software that powers our world. We believe that when everyone can contribute, consumers become contributors, significantly accelerating human progress. This mission is deeply embedded in our culture, influencing our hiring practices, product development, and industry leadership. We operate our business on our product and stay aligned with our values.

With products like Duo Enterprise and Duo Workflow, customers benefit from AI at every stage of the SDLC. The principles guiding our products are reflected in our team's work: we embrace AI as a core productivity multiplier. All team members are encouraged and expected to integrate AI into their daily workflows to enhance efficiency, innovation, and impact across our global organization.

Responsibilities

• Provide subject matter expertise on privacy and data protection matters globally within the Legal team and across GitLab.
• Assist in developing and enhancing the global privacy program in areas such as:
  • Privacy operations and documentation
  • Employee training on data privacy and security
  • Policy enforcement
  • Privacy compliance program monitoring and auditing
  • Privacy impact assessments
  • Data transfer documents
  • Records of processing
• Draft external privacy notices and disclosures.
• Manage and update internal policies and procedures to ensure compliance with global laws.
• Provide privacy support for commercial and vendor agreements to ensure consistency in language.
• Respond to privacy and security-related customer and regulatory inquiries and investigations.
• Maintain knowledge of privacy and security regulations including GDPR, UK GDPR, CCPA, and other global privacy laws, and stay current with legal and regulatory developments.

Requirements

• 4+ years of privacy legal experience, preferably within a multinational company.
• Juris Doctor (JD), Bachelor of Laws (LLB), or an equivalent local law degree, and admission to the relevant local governing body.
• Proven ability to work effectively across business units and internal functions to resolve business issues efficiently.
• A practical yet creative problem-solving approach that prioritizes addressing business needs while safeguarding GitLab’s interests.
• Proactive, dynamic, and results-driven self-starter with strong attention to detail.
• Familiarity with working across different global time zones and cultures.
• Outstanding interpersonal skills, with the ability to interface effectively with all business functions across the organization, demonstrating a highly responsive and service-oriented attitude.
• Sound and practical business judgment.
• Ability to use GitLab.

Nice to Have

• IAPP Certified Information Privacy Professional/Europe (CIPP/E) certification.
• Experience with European Works Councils (EWCs).
• Previous experience in a remote work environment.

About the Team

The GitLab Privacy team is a compact and effective group of four individuals located across Europe and America. We are committed to translating complex regulations into practical solutions and continuously refining our privacy program to remain at the forefront of compliance. Our team is part of the Legal and Corporate Affairs department.

Application Instructions