Legal Operations and Privacy Analyst

SquareTrade is the fastest growing partner in the global device protection market, working with many of the world’s largest operators, retailers and manufacturers. Our obsession with putting the customer first, from our transparent T&Cs to our better products, always available online claim filing and our flexible resolution options, are all underpinned by our exceptional team. Together, we’re united by the same end goal: to completely change what people expect from an insurance plan. We now protect over 140 million devices globally and work across Europe, with partners including Apple, T-Mobile and Telenor.

We are seeking a privacy-focused professional to contribute to policies, compliance, data protection and regulatory affairs across the organisation.

• Work with senior stakeholders to develop, implement, and maintain policies, procedures, and guidelines to ensure compliance with applicable regulations including GDPR.
• Draft and update, as applicable, the Terms and Conditions that comprise our product; ensure changes to our product are updated in all channels.
• Work with legal technology solutions to update the template for the production of the Terms and Conditions.
• Collaborate with cross-functional teams to ensure that regulatory requirements, including without limitation, restrictions and/or requirements for data processing, are incorporated into the design and implementation of new systems, processes, and products.
• Conduct privacy impact assessments (PIAs) and maintain a comprehensive record of data processing activities.
• Investigate potential data breaches and incidents and manage data protection inquiries, complaints, and regulatory reporting requirements.
• Review, analyse, and respond to data subject privacy requests, including requests for erasure, deletion, access, correction and portability.
• Advise and provide guidance to management and employees on operational requirements related to the above.
• Prepare board reports relating to incidents and potential breaches, general data protection hygiene and recommendations as required.
• Support training and awareness programs to promote a privacy-conscious culture among employees.
• Foster strong relationships with internal stakeholders and external partners to drive effective data protection practices throughout the organisation.

• Ability to work in a changing, fast paced international business with an entrepreneurial spirit.
• Credibility, professionalism and confidence to implement best practice independently with a proactive attitude.
• Ability to make the judgment to balance commercial and compliance risks to achieve positive outcomes.
• Ability to work with the business to achieve its goals within the relevant regulatory environment including delivery of difficult messages to senior leadership where necessary.
• Skilled in managing assigned tasks in an assertive, efficient and timely manner.

• Educated to degree level (or equivalent).
• Intellectually curious, highly organized and detail-oriented: you’re not afraid to ask questions and can handle multiple projects and dynamic priorities without missing a beat.
• Driven to make an impact on the business: you have a “can-do/will-do” attitude and you’re willing to think outside the box.
• You’re comfortable working with co-workers at all levels, including senior management.
• Able to work autonomously in a fast-paced environment and keep highly sensitive matters confidential.
• Fluency in English is required and French or Dutch is a plus but is not required, with the ability to communicate effectively in both written and verbal forms.
• Other European languages considered an asset.
• Willingness to travel to Brussels on occasion.

We work in a hybrid model: 3 days in the office, 2 days from home. All your information will be kept confidential according to EEO guidelines.