Privacy Engineer (Legal)

GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values. Learn more about Life at GitLab.

An overview of this role

As a Privacy Engineer in the Legal Department, you will collaborate with cross-functional teams to ensure that privacy and data protection principles are embedded into the design and implementation of our systems and processes. Your expertise will help the organization navigate complex privacy challenges, ensuring compliance with global data protection regulations and fostering trust with our stakeholders.

What You’ll Do  

• Data Mapping and Inventory Management: Integrate and maintain all data inventory, data mapping, and processing activities platforms across the company technology stack. 
• Privacy by Design Implementation: Work to align advanced technologies with Privacy by Design principles from the initial stages of development, ensuring data use meets established regulatory compliance needs by identifying compliance gaps. 
• Cross-Functional Collaboration: Interact with internal privacy program managers, data governance, customer support, security, and engineering in driving data protection requirements.
•  Training and Awareness: Conduct privacy training sessions and develop materials to raise awareness about privacy best practices across the organization.
• Data Deletion and Retention: Assist in building automations related to the deletion of user data and other personal data records within enterprise applications.Website Compliance: Influence overall privacy compliance strategy related to marketing and ad tech solutions, including the use of privacy-enhancing technologies and cookie management tools.
• Efficiency Gains within Legal and Compliance: Identify and expand the engineering capabilities within the Legal Department by utilizing your experience and knowledge to gain operational efficiencies on key compliance objectives.

What You’ll Bring 

• Bachelor’s or Master’s degree in Computer Science, Information Technology, or a related field, or 3-5 years of experience in privacy engineering or technical program management.
• Experience with tools such as OneTrust, Transcend and other similar platforms across use cases such as data mapping, data discovery, privacy impact assessments, consent/preference management, cookie compliance, data subject rights, and more.
• Proven experience in privacy engineering, data protection, or a related technical role. Experience in programming languages such as SQL and JavaScript.
• Excellent analytical skills and attention to detail.
• Effective communicator, capable of translating legal requirements into engineering solutions and conveying complex technical/engineering principles to non-technical stakeholders.

Nice to Have

• IAPP Certified Information Privacy Technologist (CIPT) certification or equivalent.
• Awareness and interest in privacy laws and regulations, including GDPR, CCPA, LGPD, ePrivacy Directive, and others relevant to the organization's operations.

About the team

GitLab Privacy is a mighty team of four spanning Europe and America.  We are dedicated to transforming complex regulations into practical solutions, always fine-tuning our privacy program to stay ahead of the curve. We sit in the Legal and Corporate Affairs department and our overview page can be found here: https://handbook.gitlab.com/handbook/legal/privacy/ 

How GitLab will support you

• Benefits to support your health, finances, and well-being
• All remote, asynchronous work environment
• Flexible Paid Time Off 
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and Development Fund
• Parental leave 
• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.  

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.