(Senior) Expert (m/f/d) – Technical Privacy

We are seeking a new team member as (Senior) Expert – Technical Privacy to ensure that our technology systems, digital products, and data processing workflows are designed and operated in full alignment with GDPR and global privacy regulations. In this role, your primary focus will be the practical implementation of privacy‑by‑design and privacy‑by‑default principles across our technology landscape. A deep knowledge of current and upcoming regulatory standards will allow you to enable product teams to build future‑proof products. You will work closely with engineering, product, legal and security teams to embed privacy into architectures, processes, and system behavior from the scratch.

• Own and operationalize privacy‑by‑design and privacy‑by‑default across all stages of the product development lifecycle from concept and architecture to development, deployment, and maintenance.
• Develop technical frameworks, design patterns, and implement standard and guidelines to ensure systems and applications inherently meet GDPR, HIPAA, EU Data Act, EU AI Act, and related regulatory requirements.
• Build and maintain a robust privacy engineering toolbox, including solutions for encryption, pseudonymization, data minimization, access governance, and secure data storage and transfer.
• Work with product owners and architects to translate regulatory requirements into concrete technical designs, system requirements, and acceptance criteria.
• Lead privacy impact assessments from a technical design perspective, identifying risks and defining mitigating controls.
• Mentor engineering teams on privacy‑preserving design principles, coding standards, and architectural best practices.
• Be at the forefront of new regulations and standards to anticipate early requirements for our products.
• Serve as the technical authority for privacy topics, supporting audits, compliance assessments, and regulatory inquiries.
• Act as a cross‑functional interface for Legal, Security, Quality, Engineering, and business functions to ensure alignment and clear communication.

• Proven experience in a role such as Privacy‑by‑Design Architect, Technical Privacy Lead, Privacy Engineer, or Privacy Architect.
• Deep, hands‑on understanding of privacy‑by‑design and privacy‑by‑default, with proven experience implementing these principles in real‑world systems and cloud environments.
• Strong knowledge of GDPR technical requirements, including data minimization, purpose limitation, security of processing, data lifecycle management, and DSR enablement.
• Demonstrated ability to learn quickly, grasp daily operations and deliverables, and adapt to a rapidly evolving regulatory environment.
• Expertise in systems architecture, cloud platforms, and privacy‑enhancing technologies (PETs).
• Experience with compliance frameworks such as ISO/IEC 27001, SOC2, or comparable standards.
• Familiarity with tools and systems that support data subject rights, consent management, and auditability.
• Certifications such as CIPP/E, CIPT, CIPM, CDPSE, CISSP, CDPO or equivalent are a plus.
• Strong analytical, problem‑solving, and critical‑thinking strengths.
• Excellent communication skills, capable of explaining complex technical privacy concepts to a broad audience.
• Strong interpersonal and negotiation skills for managing diverse and challenging opinions.
• Excellent organizational skills and the ability to operate effectively in ambiguous environments while taking initiative and owning responsibilities.