Privacy Project Manager

Term: Permanent
The Role


To support the Regulatory and Privacy Manager on all aspects of the Firm’s data protection compliance.The role would be suited to lawyers of 2 to 5 years PQE with a strong track record of working in risk management, with experience of and a strong interest in data protection.



  • Assists in the maintenance and development of the existing global privacy programme, consisting of measures designed to comply with local and international data protection laws.
  • Creates and maintains policies and procedures to ensure the Firm complies with its data privacy obligations, including privacy notices, records of processing and legitimate interest assessments.  
  • In consultation with attorney teams and professional support departments, including the Office of the General Counsel, drafts and negotiates data processing agreements with clients and vendors.
  • Advises and guides colleagues across the Firm on privacy and data protection issues and policies.
  • Conducts privacy impact assessments, including in relation to software, systems and processes.
  • Assists with the Firm’s response to data subject requests.
  • Demonstrates effective interpersonal, written and verbal communication skills to facilitate effective work relationships with others.
  • Manages Firm resources responsibly.
  • Complies with and understands Firm operation, policies and procedures.
  • Performs other related duties as assigned.
Person Specification


  • Strong knowledge of the UK and EU General Data Protection Regulation is essential
  • Working knowledge of the privacy laws in the jurisdictions of other Firm offices would be an advantage
  • Strong knowledge of MS Word and Excel with technology awareness
  • Strong research skills and proficiency in using various research tools, including Lexis Library and Practical Law
  • Excellent analytical, troubleshooting and planning skills
  • Demonstrates effective interpersonal and communication skills, both verbally and in writing
  • Ability to complete both basic and more complex tasks
  • Ability to handle multiple projects and shifting priorities
  • Demonstrates ability to pay close attention to detail and performs with high degree of consistent accuracy
  • Displays strong initiative in carrying out assignments and assumes a high level of responsibility for assigned tasks
  • Ability to handle sensitive matters and maintain confidentiality
  • Ability to organize and prioritize work
  • Ability to work well independently as well as effectively within a team
  • Ability to work well in a demanding and fast-paced environment
  • Ability to use discretion and exercise independent and sound judgment
  • Ability to deal courteously/effectively with others
  • Flexibility to adjust hours and work the hours necessary to meet operating and business needs



  • Qualified lawyer (2 to 5 years PQE) with demonstrable experience advising on data privacy and data handling issues, including in the context of commercial contracts.
  • A relevant data privacy qualification such as CIPP/ E and/or CIPM would be an advantage.
  • Experience working in an international corporate or professional services environment would be an advantage.
  • Experience working in a risk and compliance function or equivalent would be an advantage.


Note: Job descriptions are not intended, and should not be construed, to be exhaustive lists of all

responsibilities, skills and efforts. Nor are they intended to form a contractual relationship between the employee and the Firm. Rather, they are intended to be accurate reflections of the essential elements of the job.