Core Responsibilities
- Serve as a legal advisor on GDPR and European data protection matters, as well as on other key privacy and data protection laws and regulations (EU AI Act, ePrivacy Directive, UK GDPR, CCPA, etc.).
- Define and develop Palantir’s substantive positions on data protection agreements, privacy impact assessments, data incidents, data mapping exercises and compliance audits under GDPR and other legal/regulatory frameworks.
- Draft, review, and negotiate data processing agreements (DPAs), standard contractual clauses (SCCs), and other privacy-related contracts with vendors, customers, and partners.
- Draft or enhance privacy program-related standards, policies, procedures and playbooks, and provide training in line with changing regulatory guidance and best practices.
- Assist in defining and building infrastructure to effectively communicate Palantir’s data protection positions in a scalable manner to Palantir’s rapidly expanding portfolio of prospective and current customers.
- Collaborate closely with Business, Operations, Finance, and Engineering teams to shepherd deals to execution and product development, monitor regulatory developments, assess their impact on the business, and develop compliance strategies for new requirements.
- Have a demonstrated interest in technology and AI, including recent AI regulatory developments. Review incoming requests for AI use cases and assist in maturing AI governance framework and policies from a data protection perspective.
What We Value
- Demonstrated ability developing creative and analytical solutions to novel issues.
- Ability to multitask, problem solve, and balance competing priorities in a rapidly changing environment.
- Willingness and curiosity to learn and implement new data privacy laws across the globe including the EU & the UK, the U.S, MENA, and the APAC regions.
- Willingness to work flexibly on a varied schedule based on the needs of the team (currently in the US and in Europe), being available during nights and weekends as needed.
- Ability to collaborate with a cross-functional team, leveraging effective communication, strong writing and customer service skills.
- Expert knowledge of GDPR and EU data protection framework
- Extensive experience negotiating privacy contract terms in a variety of services, licensing, and other commercial agreements.
- In-house legal experience.
- Technical background.
What We Require
- Attorney in good standing, Qualified lawyer admitted in the UK or another major European jurisdiction
- Commercially-minded lawyer, 5+ years of experience with data protection and privacy laws and a particular focus on the software industry and AI technologies.
- Fluency in spoken and written English.