At a Glance
- Tasks: Lead privacy initiatives and ensure user data is handled with care and respect.
- Company: Join a cutting-edge tech company focused on design and human creativity.
- Benefits: Competitive salary, flexible work environment, and opportunities for professional growth.
- Other info: Dynamic team culture with a focus on innovation and collaboration.
- Why this job: Shape the future of privacy in tech and make a real impact on user trust.
- Qualifications: 5-8+ years in privacy or security roles, with strong technical and product management skills.
The predicted salary is between 60000 - 80000 £ per year.
About Nothing. Nothing exists to make tech feel exciting again. We’re building a different kind of technology company, one that puts design, emotion, and human creativity at the heart of everything we do. From the way our products look and feel to how we communicate and show up in culture, we believe technology should make you feel something. Founded in London in 2020, we’ve grown from idea to global challenger in just a few years. Backed by GV (Google Ventures), EQT Ventures, and C Ventures, and investors like Tony Fadell (iPod), Casey Neistat, and Kevin Lin (Twitch), we’re now sold in 40+ markets with millions of users worldwide.
The Role. Essential is Nothing’s suite of AI tools and services: on-device intelligence, cloud-assisted features, memory, search, and eventually ambient experiences across our OS and device ecosystem. For users to lean into this, they need confidence that we treat their data with precision, restraint, and respect. Your job is to make that system even more robust and understood across the market.
As Technical Product Manager for Privacy & Security, you are the owner of how we collect, move, store, and expose user data across Essential and its connected OS surfaces. More broadly, you connect three worlds: (1) security engineering, (2) privacy-by-design, and (3) regulatory reality, into one clear, opinionated system that lets us move fast without being reckless. This is an individual contributor role for someone technical, product-minded, and systems-oriented. You see the whole stack, design pragmatic guardrails, help teams ship safely, and over time define where dedicated engineering investment is needed.
What you’ll do:
- Map the system. Build an end-to-end view of data flows across Essential and the OS (signals, SDKs, telemetry, identity, cloud services, AI features, storage). Define what we collect, why, where it lives, who can access it, and how long we keep it. Maintain a single source of truth.
- Define guardrails. Create clear, risk-based rules for when privacy/security review is required. Turn them into simple requirements for PRDs, designs, and launches.
- Close the right gaps. Work with engineering to prioritise and deliver high-impact fixes. Access and secrets hygiene, pipelines, storage configuration, consent flows, auditability. Use external specialists where needed. Keep a transparent backlog.
- Build compliant-by-design flows. Partner with Legal on GDPR and similar frameworks and express them as concrete product and technical decisions (consent, minimisation, retention, deletion, data subject rights). Ensure what we document matches what we do.
- Shape how trust appears in-product. Collaborate with Design, Brand, and Product to create understandable prompts, clear controls, and sensible defaults, so that privacy and security are integrated into the Essential experience.
- Prepare for scale. As priorities solidify, define the profiles for a focused privacy/security engineering function to support Essential and OS surfaces.
What we’re looking for:
- Deeply technical & system-minded. Comfortable with architecture diagrams, data flows, APIs, storage, IAM, encryption, and logging; able to separate real risk from noise.
- Product-led view on privacy. You think in user journeys and trade-offs and can propose safe, minimal changes that keep features shippable.
- Regulatory fluency. Experience with GDPR or similar: lawful basis, minimisation, DPIAs, controller/processor roles, deletion and DSR workflows; you know when to pull in counsel.
- Operational sharpness. You turn ambiguity into plans. Inventories, gaps, owners, timelines; you drive follow-through without heavy process.
- Clear communication. Concise writing, strong documentation, ability to align product, engineering, legal, and leadership on “how we handle data here.”
- High ownership. Hands-on, detail-aware, calm. Comfortable being accountable while others execute parts of the work.
You’ll bring:
- 5-8+ years in roles such as privacy engineer, security engineer/architect, or technical product manager in a data-rich or consumer tech environment.
- Experience with modern cloud stacks (AWS/GCP), analytics/event pipelines, and API-driven architectures.
- A track record of implementing pragmatic privacy/security practices in fast-paced teams.
- Experience collaborating with legal/privacy counsel on live products.
Head of Privacy in London employer: Tensec
At Nothing, we pride ourselves on being an innovative employer that champions creativity and design in technology. Our vibrant work culture fosters collaboration and encourages personal growth, offering employees the chance to shape the future of tech while ensuring user privacy and security are at the forefront. Located in London, we provide a dynamic environment where passionate individuals can thrive, backed by industry-leading investors and a commitment to making technology feel exciting again.
StudySmarter Expert Advice🤫
We think this is how you could land Head of Privacy in London
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like Tensec looking for candidates who are engaged and informed.
We think you need these skills to ace Head of Privacy in London
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at Tensec. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at Tensec
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with Tensec’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!
