AI and Privacy Counsel

At Sabio Group, we’re building the next generation of AI‑powered customer experience for some of the world’s most demanding enterprise brands. We deliver significant volumes of agentic AI, LLM and conversational solutions into regulated industries, which means the legal and contractual underpinnings of how we sell, deliver and partner on AI are both a competitive advantage and a customer expectation.

We’re hiring a Privacy and AI Counsel to join our legal team and partner closely with our Information Security and AI Compliance & Governance functions.

• Customer & Partner Contracts: Draft, review and negotiate AI‑specific terms in customer contracts such as IP ownership of inputs/outputs, training data rights, model use restrictions, acceptable use, liability and indemnity positions, performance and uptime, data residency, sub‑processing, exit and transition; partner, reseller and channel agreements, including with hyperscalers and AI platforms (Microsoft, Google, Anthropic, OpenAI, Cognigy and others), understanding the commercial and legal nuances of each provider’s terms. Responsible for clarifying responsibilities, flow‑down obligations to customers and risk allocation across the value chain for these suppliers. Continued development and maintenance of Sabio’s AI contracting playbook, including standard clauses, fallback positions, negotiation guidance and risk‑tiered approval matrices. Support French and/or Spanish commercial contracting during high‑volume periods to deliver increased sales bookings.
• AI Regulatory & Compliance: Legal View: Act as the legal lead on EU AI Act obligations, advising on risk classification of solutions, provider/deployer responsibilities, transparency, due diligence, CE marking and registration, post‑market monitoring and incident reporting. Partner with the AI Compliance & Governance Specialist on ISO 42001 roadmap, evidencing legal controls, and aligning contractual commitments with operational reality. Track and translate emerging AI regulation across our operating jurisdictions (UK, EU, Spain, France, South Africa) into actionable legal guidance and policy updates. Advise on intersections with data protection legislation, IP law, consumer protection and sector‑specific regimes where they touch AI.
• IP, Data & Risk: Advise on intellectual property in AI contexts, including use of third‑party content, use of training data, ownership and licensing of models, prompts, fine‑tunes, embeddings, datasets and generated outputs. Work with the AI Compliance & Governance Specialist on AI risk assessments. Work with information security on data protection impact assessments. Advise on and execute Data Subject Request responses. Advise on international data transfers, related transfer impact assessments and ongoing data protection obligations.
• Audit, Disputes & Incident Response: Support customer audits, regulator engagement and certification bodies on legal and contractual matters. Lead the legal response to AI and data related incidents, complaints or disputes, coordinating response across information security, operations and customer teams.
• Enablement & Communication: Run training and clinics that lift legal and contracting literacy across sales, delivery, AI and partnership teams. Bring people together across geographies and disciplines to land negotiation positions and unblock deals. Produce high‑quality written content – playbook entries, position papers, customer‑facing legal materials, internal briefings.

• Qualified lawyer in a relevant jurisdiction (UK solicitor, Spanish abogado, French avocat or equivalent).
• Able to work autonomously (3-5 years PQE).
• Fluent in English and either French or Spanish. Working proficiency in all three is a strong advantage.
• Demonstrable experience drafting and negotiating technology, software, SaaS or services contracts in a B2B / enterprise setting, including AI‑specific terms and closely adjacent ones (data protection, DORA, EBA).
• Strong working knowledge of the EU AI Act and a clear understanding of how risk classification, obligations and timelines translate into contractual and legal positions.
• The GDPR, as well as local data protection laws such as LOPDGDD/Loi Sapin II/UK GDPR, Data Use and Access, etc. (depending on location).
• Awareness of AI‑specific risks and how to allocate them contractually.
• Understanding of core principles of modern AI to allow you to negotiate credibly with technical counterparts and write contractual language that reflects how AI systems behave.
• Hands‑on experience using AI tooling for professional purposes, such as using AI co‑work / copilots to draft, review, redline, analyse and accelerate your own output.
• Familiarity with ISO/IEC 42001, ISO/IEC 27001 and SOC 2 Type II at the level needed to align contracts and customer commitments to certification posture.
• Excellent written and verbal communication. Able to draft a precise contractual clause, run a negotiation, brief a customer’s counsel and write a relevant internal note.
• Ability to run meetings, bring groups together and drive outcomes across geographically dispersed teams and different business functions.
• Comfortable in a high‑pace, multi‑stakeholder environment.
• Motivated and able to build effective working relationships across cultures and time zones.
• A passion for raising the bar in others. You will deliver training and coaching, enabling and growing legal/commercial literacy across the organisation.

• In‑house experience in a technology, SaaS, AI, contact‑centre or consulting business.
• Direct experience negotiating with hyperscalers and AI platforms (Microsoft, Google, AWS, Anthropic, OpenAI, Cognigy and similar).
• Experience supporting customer audits, working with certification bodies and managing regulator engagement on legal matters.
• Exposure to IP licensing, open‑source compliance or content rights.
• Familiarity with Microsoft Copilot, Microsoft Cowork and the broader Microsoft AI ecosystem.

• Prior career stage in private practice technology / commercial / data / regulatory team(s) before moving in‑house.
• Familiarity with NIST AI RMF, UK AI regulatory developments, or sector‑specific AI guidance (financial services, healthcare, public sector).
• A track record of writing articles or giving talks on AI law, responsible AI, data protection or technology contracts.

This role can be office or home based in any of: Spain - able to travel easily to Madrid; France - able to travel easily to Paris; UK - able to travel easily to London or Glasgow. Sabio is a geographically dispersed organisation, so you’ll be comfortable working with colleagues across multiple locations and the nuances of different cultures and working styles. Occasional travel between Sabio locations and to customers should be expected.

This is your chance to join a friendly and passionate team that will motivate you to learn and develop your career in the company.

• Pension Scheme
• Remote/Flexible work
• Life insurance
• Private health and dental care
• Cycle to work
• 28 days paid holiday a year (including three Sabio days)
• LinkedIn Learning
• Plus many more! (Benefits are dependant on your base location.)

Strictly No Agencies; any submission of resumes without prior request from Sabio Group will not be deemed as an introduction and therefore will not warrant an introduction fee. All applicants must have the right to work in the territory to which the role relates (UK & EU). Sabio Group are unable to offer sponsorship on any roles advertised.