Senior Privacy & Compliance Manager (Fractional | Remote)

Location: Remote

Working Pattern: Fractional / Part-Time

Reporting To: General Counsel

Our client is an emerging technology company developing advanced AI-driven cyber intelligence and risk management solutions for regulated industries.

As the business continues to scale and expand into new markets, they are seeking a Privacy & Compliance Lead to support the development and operation of their privacy, compliance, governance, and legal operations functions.

This is a substantive individual contributor role offering significant ownership and responsibility across privacy, compliance, governance, and operational legal matters.

Working closely with the General Counsel, you will help build and maintain scalable compliance processes that support a growing international technology business.

This opportunity is best suited to professionals who are comfortable contributing within an early-stage environment where engagement structures evolve alongside company growth.

Please include your responses to the following questions within the same document as your CV:

How many years of experience do you have working in privacy, compliance, legal operations, regulatory affairs, or related functions?

Please briefly describe your experience managing GDPR compliance activities, including any involvement with:

• Records of Processing Activities (RoPA)
• Data Protection Impact Assessments (DPIAs)
• Data Subject Rights Requests
• Data Processing Agreements (DPAs)

Have you worked within a SaaS, technology, cybersecurity, fintech, financial services, or other regulated environment? If yes, please provide details.

Do you hold any privacy, compliance, legal operations, or governance certifications (e.g. CIPP/E, CIPM, CIPT, ISO 27001, SOC 2, etc.)?

Are you comfortable working within a fractional, remote-first environment where you will be expected to operate independently and manage your own priorities?

Applications submitted without responses to the above questions may not be reviewed.

• Support the day-to-day operation of the compliance programme
• Maintain compliance calendars, risk registers, and internal policy libraries
• Monitor regulatory developments across relevant UK, EU, and international frameworks
• Prepare compliance briefings and management updates
• Coordinate compliance training and awareness activities
• Support audit preparation and certification activities, including ISO 27001 and SOC 2

• Support GDPR compliance activities across the business
• Maintain privacy records, registers, and supporting documentation
• Coordinate Data Protection Impact Assessments (DPIAs)
• Manage Data Subject Rights Requests and associated processes
• Support processor due diligence and vendor privacy reviews
• Maintain privacy notices, policies, and supporting documentation
• Assist with international data transfer assessments and documentation

• Support the management of standard commercial agreements, including NDAs, DPAs, supplier agreements, and advisory contracts
• Maintain contract registers and renewal tracking
• Manage template libraries and version control
• Assist with legal due diligence activities relating to partnerships, procurement, and fundraising initiatives
• Coordinate document execution and filing processes

• Draft, maintain, and update internal policies and governance documentation
• Coordinate policy reviews and staff acknowledgements
• Support management reporting on compliance and risk matters
• Act as a first point of contact for internal compliance-related queries
• Escalate legal matters appropriately to the General Counsel

You are likely to be a strong fit if you have:

• 4–8 years' experience within privacy, compliance, legal operations, governance, regulatory affairs, or similar functions
• Strong practical experience operating GDPR compliance processes
• Experience managing compliance programmes or compliance-related activities
• Experience supporting legal operations and contract administration
• Excellent written communication and documentation skills
• Strong organisational skills and attention to detail
• The ability to work independently whilst exercising sound professional judgement

The following would be advantageous:

• CIPP/E, CIPM, CIPT, or similar privacy/compliance certifications
• Experience within SaaS, cybersecurity, fintech, or regulated technology environments
• Exposure to ISO 27001 or SOC 2 programmes
• Familiarity with NIS2, ePrivacy, AI Act, or related regulatory frameworks
• Experience using contract lifecycle management tools or legal operations platforms
• Experience supporting international privacy and compliance activities

You are comfortable managing multiple priorities and ensuring important compliance activities remain on track.

You understand how compliance supports business growth and can balance risk with pragmatism.

You can translate complex regulatory concepts into practical guidance for non-specialists.

You are comfortable working remotely and taking ownership of your responsibilities.

You enjoy building structure, maintaining standards, and ensuring nothing falls through the cracks.

This opportunity is structured as a flexible fractional engagement and is designed for professionals interested in contributing to the development and growth of an emerging technology business.

Further details regarding the engagement structure will be discussed with shortlisted candidates.

• Flexible remote working
• Opportunity to work alongside experienced legal, cybersecurity, technology, and commercial leaders
• Significant ownership and responsibility
• Exposure to complex international privacy and compliance matters
• Opportunity to contribute to the development of a growing technology platform