Privacy Analyst

Help us use technology to make a big green dent in the universe! Kraken powers some of the most innovative global developments in energy. We’re a technology company focused on creating a smart, sustainable energy system. From optimising renewable generation, creating a more intelligent grid and enabling utilities to provide excellent customer experiences, our operating system for energy is transforming the industry around the world in a way that benefits everyone. It’s a really exciting time in energy. Help us make a real impact on shaping a better, more sustainable future.

Kraken Customer

What we do: build the most AI-driven, innovative, forward-thinking platform for energy management. From optimising resources to delivering cost-effective, exceptional customer experiences through advanced Customer Information Systems (CIS), billing, meter data management, CRM, and AI-driven communications, Kraken is powering the next wave of innovation in the energy industry.

Why we do it: future energy will not look like energy as we know it today. We need to not just think about our future, but build for it. Now.

We’re looking for a Privacy Analyst to join our Privacy team, to bolster our privacy framework to accommodate our fast moving agile organisation, and help us navigate complex privacy landscapes globally as we expand into new territories.

• Handle support requests from the business, providing data protection and privacy expertise.
• Collaborate with product, engineering, and legal teams to ensure our services meet data privacy and protection regulations and best practices. Work closely with the Security team to align security measures with data protection goals.
• Engage with the internal developer community to advocate for the importance of data privacy and protection in software development, helping to embed privacy by design and privacy by default.
• Supporting the business with, and ensuring the completion of, DPIAs and PIAs for products and third party vendors, working to mitigate and reduce risks; risk register management.
• Third party vendor due diligence; working closely with the InfoSec, Legal and Procurement teams to assess the posture of vendors and mitigate risks before the business onboards. Subprocessor analysis and client notification support.
• Support the Cyber Defense team on data privacy incidents, including logging, investigation, remediation, root cause analysis and reporting.
• Support in the development and delivery of training programs for Kraken employees, on global privacy and data protection.
• Helping to create and modify data protection handling policies and procedures that meet global compliance regulations and internal standards.
• Maintaining record of processing activities for our controller and processor obligations; data mapping exercises with Kraken and our Group’s subsidiaries.
• Managing the privacy mailbox, which can include handling GDPR requests.
• Regularly update key stakeholders about the state of data privacy and protection on our platform, emerging risks, and strategies being taken to mitigate them.
• Creating and refining privacy team procedures, automating where possible, for efficient, scalable operations that allow us to meet the demand of the business.

• Working in a Privacy Analyst role within an organisation that’s a data processor (e.g. a SaaS provider or software vendor).
• Creating and maintaining records of processing activities, in line with controller and processor obligations.
• Significant operational experience in DPIAs/PIAs, third party vendor management, and risk management.
• Data incident management, incl. root cause analysis, remediation, logging and reporting.
• Working closely with technical teams, including software development and information security.
• Knowledge management (including content creation, maintenance and delivery).
• Working knowledge of the majority of Articles of the EU GDPR, UK DPA 2018, and CIPPA.
• Implementing Privacy by Design and Privacy by Default into product development.
• Staying up-to-date with the fast-moving landscape of data protection regulations and technologies, including international legislation that will impact our global clients.
• Working in high-pressure environments and prioritising effectively.
• Understanding use cases of artificial intelligence within tech organisations and within the utilities markets, plus the associated data protection and privacy risks.

• Strong stakeholder management skills; confident and willing to jump on calls regularly with the business to extract the information we need for early and efficient risk analysis.
• A self-starter, taking the initiative to help drive the team’s initiatives forward.
• Highly adaptable to new technologies, including cloud technology and internet infrastructure.
• Strong problem-solving and analytical capabilities.
• Very well organised; able to meet deadlines under pressure.
• Excellent verbal and written communication skills, particularly the ability to translate complex regulatory requirements into actionable tasks for different departments.
• Excellent attention to detail and record keeping.

• Ideally: minimum 2 years experience working for a technology company as a Privacy Analyst.
• Knowledge of local privacy laws and regulators in EU, USA and APAC territories.
• Privacy certifications (such as CIPT, CIPP/E, CIPM).
• LLB law degree or similar.
• Familiarity with utility sector data and regulations.

Kraken is a certified Great Place to Work in France, Germany, Spain, Japan and Australia. In the UK we are one of the Best Workplaces on Glassdoor with a score of 4.7. Check out our Welcome to the Jungle site (FR/EN) to learn more about our teams and culture.

Are you ready for a career with us? We want to ensure you have all the tools and environment you need to unleash your potential. If you have any specific accommodations or a unique preference, please contact us at inclusion@kraken.tech and we\'ll do what we can to customise your interview process for comfort and maximum magic!

Studies have shown that some groups of people, like women, are less likely to apply to a role unless they meet 100% of the job requirements. Whoever you are, if you like one of our jobs, we encourage you to apply as you might just be the candidate we hire. Across Kraken, we\'re looking for genuinely decent people who are honest and empathetic. Our people are our strongest asset and the unique skills and perspectives people bring to the team are the driving force of our success. As an equal opportunity employer, we do not discriminate on the basis of any protected attribute. U.S. based candidates can learn more about their EEO rights here.

Our (i) Applicant and Candidate Privacy Notice and Artificial Intelligence (AI) Notice, Website Privacy Notice and Cookie Notice govern the collection and use of your personal data in connection with your application and use of our website. These policies explain how we handle your data and outline your rights under applicable laws, including, but not limited to, the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Depending on your location, you may have the right to access, correct, or delete your information, object to processing, or withdraw consent. By applying, you acknowledge that you’ve read, understood and consent to these terms