At a Glance
- Tasks: Lead and embed a robust privacy function across the business, driving core workstreams.
- Company: Dynamic company prioritising data compliance at the heart of its operations.
- Benefits: Competitive salary, leadership opportunities, and a chance to shape privacy governance.
- Other info: Ideal for someone ready to step into a leadership role and drive change.
- Why this job: Make a real impact by building a privacy function from the ground up.
- Qualifications: Qualified solicitor with 5-8 years' PQE in data protection and in-house experience.
The predicted salary is between 80000 - 100000 £ per year.
Data compliance is not a peripheral function here — it sits at the heart of the product and the business model. As the company matures and invests in its legal and governance infrastructure, this role has been created to lead and embed a privacy function that is genuinely robust, not just defensible on paper.
Reporting to the CLO, this is a hands-on leadership role with real scope and immediate impact. You will be the primary privacy resource in-house, leading and driving core privacy workstreams across the business, from policy and governance through to privacy by design, AI governance, and training.
This is an opportunity to build something. You will shape the privacy function around genuine business need, working directly with product, engineering, sales, marketing and HR. You will be expected to lead workstreams, not just support them.
What You Will Do
- Privacy governance and policy - own the full suite of privacy policies, frameworks and governance documentation; build and operationalise a data retention framework; maintain the ROPA and privacy notices; support internal and external audits; manage the subject rights process and privacy incidents end-to-end.
- Privacy by design - embed a privacy by design programme across product and engineering; develop practical frameworks that allow fast-moving teams to build compliantly; act as the primary legal voice in product development cycles; work directly with engineering to translate legal requirements into implemented solutions.
- AI strategy and implementation - lead the development of an AI governance framework; advise on privacy implications of AI tools and features; lead DPIAs for AI-related processing; keep the business ahead of regulatory change in this space.
- Global data complexity - progress Transfer Impact Assessments for non-EEA transfers; support jurisdiction-specific compliance requirements; work with engineering on data dictionary and field-level mapping.
- Vendor governance - refine the DDQ process; manage vendor audit cadence; review and negotiate DPAs.
- Training and engagement - design and deliver a refreshed privacy training programme across the business; build genuine privacy literacy, not tick-box compliance; be the adviser people actually want to call.
- Commercial support - advise on data protection aspects of contracts and supplier arrangements; support the wider legal team on matters with a data dimension.
- Advise and influence senior leadership, including at C-suite level, on privacy risk, strategy and business impact; translate complex privacy issues into clear, actionable guidance that executives can act on.
About You
You are a qualified solicitor with 5–8 years' PQE and a strong privacy specialism. You have genuine in-house experience and have owned and delivered privacy workstreams, not just advised on them. You are ready to lead a function, and you want the platform to build something properly rather than inherit someone else's structure.
You are comfortable working with engineering and product teams, and you understand that implementation matters as much as the legal analysis behind it. You bring sound judgment, a commercial mindset, and the ability to work autonomously in a complex, fast-moving environment. You are calm and structured under pressure.
Essential:
- Qualified solicitor (England & Wales or equivalent)
- 5–8 years' PQE in data protection / privacy law
- In-house experience owning and delivering privacy programmes end-to-end
- Practical grounding in UK GDPR, EU GDPR, CCPA, EU AI Act and international transfers
- Experience working directly with engineering or product teams
- AI governance experience - essential, not desirable
- Ready to step into a leadership role and build a function
Desirable:
- Background in B2B data, adtech or a business where data is the product
- Experience with DSAR automation tooling
- International privacy experience beyond UK/EU
- Direct ICO or DPA engagement
- CIPP/E or equivalent qualification
What This Role Is and Isn't
- A leadership role with genuine scope to build a privacy function from a strong foundation
- Suited to someone stepping into their first Head of Function role who wants to own something, not inherit it
- Execution-focused — you will lead workstreams hands-on, not manage others doing them
- Not a DPO role
- Not a large-team leadership position
- Not a role for someone who advises but does not implement
Lead Privacy Council in Slough employer: Cognism
As a Lead Privacy Council at our company, you will be part of a dynamic and innovative environment where data compliance is integral to our business model. We pride ourselves on fostering a collaborative work culture that encourages personal growth and development, offering you the unique opportunity to shape and lead a robust privacy function from the ground up. With a commitment to employee engagement and continuous learning, we provide comprehensive training programmes and a supportive atmosphere that empowers you to make a meaningful impact across the organisation.
StudySmarter Expert Advice🤫
We think this is how you could land Lead Privacy Council in Slough
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like Cognism looking for candidates who are engaged and informed.
We think you need these skills to ace Lead Privacy Council in Slough
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at Cognism. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at Cognism
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with Cognism’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!
