Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead Trainline's global privacy strategy and ensure compliance with data protection regulations.
- Company: Join Trainline, Europe's number 1 downloaded rail app, focused on sustainable travel.
- Benefits: Enjoy private healthcare, generous leave, and clear career growth paths.
- Other info: Be part of a diverse team committed to making a positive impact.
- Why this job: Shape the future of travel while driving innovation in a fast-paced environment.
- Qualifications: Significant experience in privacy leadership and knowledge of UK/EU data protection regulations.
The predicted salary is between 80000 - 100000 £ per year.
About us
We are champions of rail, inspired to build a greener, more sustainable future of travel. Trainline enables millions of travellers to find and book the best value tickets across carriers, fares, and journey options through our highly rated mobile app, website, and B2B partner channels. Great journeys start with Trainline. Now Europe’s number 1 downloaded rail app, with over 135 million monthly visits and £6.3 billion in annual ticket sales, we collaborate with 270+ rail and coach companies in over 40 countries. We want to create a world where travel is as simple, seamless, eco-friendly and affordable as it should be. Today, we're a FTSE 250 company driven by our incredible team of over 1,000 Trainliners from 50+ nationalities, based across London, Paris, Barcelona, Milan, Edinburgh and Madrid. With our focus on growth in the UK and Europe, now is the perfect time to join us on this high-speed journey.
Introducing Head of Privacy / Data Protection Officer (DPO) at Trainline
This role sits within the Security organisation, reporting into the Chief Information Security Officer (CISO) and acting as Trainline’s appointed Data Protection Officer (DPO). As Head of Privacy, you will lead Trainline’s global privacy strategy and programme, ensuring privacy is embedded into everything we build - while enabling teams to move quickly in a fast-paced, product-led environment. Operating at the intersection of Product, Engineering, Data, Security, and a rapidly changing regulatory environment, you will play a key role in supporting innovation, including AI-driven products.
You will lead a small, high-impact team and act as both a strategic advisor and hands-on leader, helping the business navigate evolving regulatory requirements while balancing risk with commercial outcomes. The ideal candidate will bring strong privacy leadership experience, with the ability to translate complex regulation into practical, scalable approaches that support business growth.
As Head of Privacy / DPO at Trainline, you will:
- Lead and shape Trainline’s global privacy strategy, advising the business on compliance and risk ensuring alignment with business goals and regulations (UK GDPR, EU GDPR, ePrivacy) and emerging frameworks.
- Act as the appointed DPO, fulfilling statutory obligations and acting as the primary contact point for supervisory authorities (e.g. ICO) overseeing regulatory engagement.
- Embed privacy by design and by default into the product development lifecycle, partnering closely with Product and Engineering teams.
- Support rapid experimentation and innovation by providing pragmatic, risk-based guidance that enables delivery at pace.
- Advise on AI, machine learning, and data-driven products, including governance, risk assessment, and responsible data use.
- Work closely with Legal, CISO/Security, and Data teams to align privacy, security, and regulatory approaches.
- Act as a bridge between technical and non-technical stakeholders, translating complex topics into clear, actionable guidance.
- Oversee core privacy operations including DPIAs, ROPA, data subject rights, and privacy-related incident response.
- Build scalable, efficient privacy processes suited to a high-growth, product-led environment.
- Lead and develop a high-performing privacy team, setting priorities and fostering a culture of ownership and pragmatism.
- Promote a strong privacy-aware culture across the organisation through training, guidance, and stakeholder engagement.
We’d love to hear from you if you:
- Have significant experience in a privacy leadership role, ideally as a Data Protection Officer or equivalent.
- Bring deep knowledge of UK/EU data protection regulations and how to apply them in a commercial, product-led business.
- Have experience partnering closely with Product, Engineering, and Security teams in fast-paced environments.
- Can balance regulatory requirements with business needs, enabling innovation without unnecessary friction.
- Are comfortable engaging with technical systems, architectures, and modern product development practices (e.g. agile, experimentation).
- Have experience advising on AI or advanced data use cases and understand associated privacy risks and emerging regulation.
- Are a strong communicator who can influence at all levels and simplify complex topics.
- Thrive in ambiguity and can create clarity, structure, and momentum.
- Have experience in a technology, marketplace, or digital platform business.
- Have experience with adtech, cookies, and tracking technologies, and a strong understanding of the associated privacy and regulatory considerations.
- Familiarity with AI governance and emerging regulatory frameworks.
- Have experience working with or implementing AI tools in a professional context.
More information:
Enjoy fantastic perks like private healthcare & dental insurance, a generous work from abroad policy, 2-for-1 share purchase plans, an EV Scheme to further reduce carbon emissions, extra festive time off, and excellent family-friendly benefits. We prioritise career growth with clear career paths, transparent pay bands, personal learning budgets, and regular learning days. Jump on board and supercharge your career from day one! We're operate a hybrid model to work and ask that Trainliners work from the office a minimum of 60% of their time over a 12-week period. We also have a 28-day Work from Abroad policy.
Our values represent the things that matter most to us and what we live and breathe everyday, in everything we do: Think Big - We're building the future of rail, Own It - We focus on every customer, partner and journey, Travel Together - We're one team, Do Good - We make a positive impact.
We know that having a diverse team makes us better and helps us succeed. And we mean all forms of diversity - gender, ethnicity, sexuality, disability, nationality and diversity of thought. That's why we're committed to creating inclusive places to work, where everyone belongs and differences are valued and celebrated.
Interested in finding out more about what it's like to work at Trainline? Why not check us out on LinkedIn, Instagram and Glassdoor!
Head of Privacy in London employer: Trainline
Contact Detail:
Trainline Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Privacy in London
✨Tip Number 1
Network like a pro! Reach out to current or former Trainliners on LinkedIn. A friendly chat can give you insider info about the company culture and maybe even a referral.
✨Tip Number 2
Prepare for the interview by understanding Trainline's mission and values. Show us how your experience aligns with our goal of building a greener, more sustainable future of travel.
✨Tip Number 3
Practice your storytelling skills! Be ready to share specific examples of how you've tackled privacy challenges in the past. We love hearing about real-life experiences that demonstrate your expertise.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our team.
We think you need these skills to ace Head of Privacy in London
Some tips for your application 🫡
Show Your Passion for Privacy: When you're writing your application, let your enthusiasm for privacy shine through! We want to see how your experience aligns with our mission to embed privacy into everything we do. Make it personal and relatable!
Tailor Your Application: Don’t just send a generic application! Take the time to tailor your CV and cover letter to highlight your relevant experience in data protection and how it fits with our goals at Trainline. We love seeing candidates who understand our values.
Be Clear and Concise: Keep your application clear and to the point. Use straightforward language to explain your experience and skills. We appreciate candidates who can communicate complex topics simply, just like we do with our customers!
Apply Through Our Website: Make sure you apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re serious about joining our team at Trainline!
How to prepare for a job interview at Trainline
✨Know Your Privacy Regulations
Make sure you brush up on UK and EU data protection regulations, especially GDPR and ePrivacy. Being able to discuss how these regulations apply to Trainline's business model will show that you're not just familiar with the rules, but that you can also translate them into practical strategies.
✨Showcase Your Leadership Skills
As the Head of Privacy, you'll be leading a team and advising various departments. Prepare examples of how you've successfully led teams in the past, particularly in fast-paced environments. Highlight your ability to balance compliance with innovation, as this is crucial for Trainline's growth.
✨Bridge the Technical Gap
You'll need to communicate effectively with both technical and non-technical stakeholders. Be ready to explain complex privacy concepts in simple terms. Think of examples where you've successfully done this before, especially in relation to AI and data-driven products.
✨Emphasise a Culture of Privacy
Trainline values a strong privacy-aware culture. Come prepared with ideas on how you would promote this within the organisation. Discuss any previous initiatives you've led that fostered a culture of ownership and awareness around privacy issues.