Résumé du poste par JobGrid
Global Deputy DPO at trustly: London, Royaume-Uni; Sur site; Lead; Finance, juridique et conformité. JobGrid adds normalized role facts, source context, and a path to the employer application page so candidates can compare the listing before applying.
- Location and workplace: London, Royaume-Uni, Sur site
- Role classification: Finance, juridique et conformité, Lead
- Source freshness: checked by JobGrid on 2026-06-03.
- Application path: candidates continue to the employer application page with non-personal referral tags.
ABOUT THE ROLE
We are seeking an experienced Global Deputy DPO with a FinTech and/or Tech background to join our global Legal, Compliance & Risk team. Reporting to the Global Head of Privacy & DPO, you will lead Trustly's privacy operations, support the discharge of statutory obligations under applicable data protection legislation, and stand in for the Global DPO from time to time. Trustly is at a pivotal moment - we are actively globalising our privacy framework and building the infrastructure, processes, and governance structures that will underpin how we handle data across every market we operate in. This is a rare opportunity to join a scaling FinTech at a genuinely formative stage: you will not be inheriting a finished product - you will be helping to design and build it.
This role is ideal for a senior privacy professional who has moved beyond purely advisory work. You will be a senior voice in the business on all things privacy, acting as a trusted partner to engineering, security, data management, legal, and HR teams, and driving a culture of data protection by design and default. If you thrive in a building environment, are energised by complexity across multiple jurisdictions, and want genuine influence over how a global payments business manages data responsibly, we want to hear from you.
What you'll do
Contribute to the design and development, and lead the implementation of Trustly's global privacy operations framework, including, procedures, standards, and controls across all jurisdictions in which Trustly operates.
Support the Global DPO in the performance of all statutory and regulatory obligations under the UK GDPR, EU GDPR, and applicable US privacy laws, acting as a formal deputy and standing in for the DPO in their absence.
In collaboration with the Global DPO, manage engagements with privacy regulators worldwide.
Maintain and enhance a robust Records of Processing Activities.
Manage and continuously improve processes for handling data subject rights requests, data breach notifications, and regulatory enquiries in line with applicable legal deadlines.
Partner with engineering, security and data teams to embed privacy by design principles.
Drive the rollout and ongoing improvement of privacy training and awareness programmes across Trustly's global workforce.
Manage and continuously mature Trustly’s global privacy risk register and contribute to accompanying reports to relevant committees, boards and external bodies.
Collaborate closely with the Global Privacy & DPO team to ensure alignment on privacy strategies, share best practices, and coordinate cross-regional privacy initiatives.
Monitor the evolving global regulatory landscape and ensure Trustly's privacy framework remains current, compliant, and fit for purpose as the business scales.
Who you are
You have 7-10 years experience in privacy, with substantial experience in a senior in-house privacy role with direct responsibility for privacy operations rather than purely advisory or counsel functions.
Law degree (LLB, LLM, or equivalent) and qualified solicitor, barrister, or equivalent legal qualification in an EU member state or the UK is strongly preferred but not essential; what matters most is your demonstrable understanding and application of complex UK GDPR, EU GDPR, and US privacy laws (including CCPA/CPRA and other relevant state legislation).
You are proactive, solutions-oriented, and energised by the challenge of building something meaningful - you do not wait to be told what needs to be done.
You hold a recognised data protection qualification (such as CIPP/E, CIPM, or equivalent) and have a thorough, practical understanding of the UK GDPR, EU GDPR, and US privacy laws (including CCPA/CPRA and other relevant state legislation).
You have demonstrable, hands-on experience in building out and scaling global privacy programmes, processes, and governance frameworks from the ground up - not simply maintaining inherited structures.
You are comfortable operating as a formal Deputy DPO and understand the legal obligations, accountability requirements, and regulatory expectations that come with that designation.
You bring strong operational instincts alongside your legal knowledge - you can translate complex regulatory requirements into practical, workable processes for a fast-moving business.
You have strong experience managing cross-functional stakeholder relationships and are confident advising and influencing at all levels, including senior leadership and C-suite.
Experience in FinTech, payments, or regulated financial services is highly desirable but not strictly essential; what matters most is your demonstrable ability to apply rigorous privacy expertise to a complex, fast-scaling and tech environment.
Willingness to work flexible hours to collaborate with global privacy team members across different time zones and travel occasionally for meetings.