(Senior) Data Privacy Specialist

at  Teoresi Group

Teoresi is an international engineering services company founded in 1987 in Turin, Italy. At Teoresi, we specialize in supporting companies in creating projects using cutting-edge technologies such as self-driving cars and nanotechnology for the medical field. Our innovative approach involves close collaboration with the R&D departments of major industrial brands. We provide turnkey solutions to help our clients bring their products to market faster. We have been selected by Amazon as one of only 10 companies to work on developing new products using Alexa voice technology.
We are always looking for talented individuals to join our team. At Teoresi, we value innovation in each project challenge, teamwork, diversity, and we think beyond borders, both geographically and in terms of our approach. We are committed to staying up-to-date with technological advancements while also prioritizing people and environmental sustainability. Our team is diverse and located around the world, which allows us to offer international career opportunities and meet the needs of a constantly evolving market. We believe in the importance of proactivity and learning in a team environment and are dedicated to generating innovation in everything we do.
If you share our values and are interested in joining a forward-thinking company, keep reading and apply!

JOB REQUIREMENTS

Your Profile

• 5+ years of professional experience as Business Lawyer/Qualified Lawyer/IT specialist with legal background, or in a similar role.
• Work experience in data privacy compliance and/or (technical) data privacy or IT law, or other related fields of regulatory compliance, such as competition law, IP law, or similar.
• Experience in legal research and process definition to improve data privacy compliance.
• Expertise in GDPR, global privacy laws, data compliance related processes and methodologies regarding their application to software development and/or digital business processes.
• Experience with the implementation of legal requirements into agile (automotive) software development and cloud operation processes.
• Excellent communication skills with an open and structured approach to problem-solving.
• Fluency in English; German language skills are an asset.
• Open approach to people, especially in an international and multicultural environment.

EDUCATION

Bachelor’s Degree

• Support and conduct risk assessments, define and track implementation of requirements for technical data privacy compliance for Global Connected Car Systems on vehicle level and cloud environment with focus EU/UK, EMEA, APAC, USA (Privacy by Design).
• Ad hoc data privacy consultancy of internal and external stakeholders in all aspects of automotive software development, mobile APP development and operations, and cloud operations (e.g., UI/UX, support workflows, sales/aftersales processes), including emerging technologies and business scenarios (e.g., personalized services, autonomous driving, AI, Big Data).
• Consult data privacy stakeholders in accordance with specific data privacy legislation and relevant legislation with impact on data privacy (e.g., laws in IoT, cloud, telecommunications, competition), including product specific advice on data privacy compliant implementation (focus EU/UK, EMEA, APAC, USA).
• collaborate with internal and external data privacy stakeholders (cross-brand, DPO, legal department, IT, Cybersecurity, global markets).
• Manage Records of Processing Activities (RoPA) for connected car scenarios and related cloud processes during development and operational phase, including market specific data privacy documentations and risk assessments (e.g., DPA, SCC, DPIA, TIA, and/or market specific equivalents).
• Contract management (DPA, intragroup transfer, IT services, cloud services).
• Support implementation and operate data subject rights management workflow in accordance with GDPR and relevant market specific data privacy legislation and court ruling (focus EU/UK, EMEA).
• Manage and develop privacy information management systems (PIMS) in accordance with ISO 27001/27701 standards and Europrivacy criteria.
• Support (re-)certification processes in accordance with ISO 27701 and Europrivacy criteria.
• Coordinate and support data privacy specific product tests in automotive software development including validation of data privacy specific product criteria, workflows, and designs (e.g., consult product owners, define test cases, coordinate processes in debugging and aftersales troubleshooting).
• Assess product specific data privacy notification obligations and workflows for connected car products and cloud environments (e.g., drafting of privacy notices/terms and conditions/EULA, assessment and documentation of data flows) with focus EU/UK, EMEA, APAC.