Senior Privacy Counsel & DPO Germany
New York City, Richmond County, New York, USA
Listed on 2026-07-01
-
Security
Data Security
Senior Privacy Counsel & DPO Germany
Shine is the financial copilot for entrepreneurs and small business owners. Founded by serial entrepreneurs Rico Andersen and Martin Hegelund, Shine is a leading European fintech unicorn on a mission to restore the joy of running a business, by ending wasted time on financial admin. Shine offers a connected solution for invoicing, accounting, payroll, business accounts, payments, and financing, meaning business owners can focus their energy on growing a healthy business, not held back by manual admin.
Today we're part of Cegid, a European leader in cloud software for finance and accounting. Together we're building Europe's leading financial copilot for small businesses and their accountants. Shine already supports more than 400,000 small businesses. As part of Cegid, we now reach over one million small businesses and 15,000 accountants across Europe. We're a multicultural team working from France, Germany, Denmark and the Netherlands, contributing to a wider European network that spans Spain, Portugal and Belgium.
Your hiring experience matters Just as we respect our customers' time, we respect yours. Your experience with Shine and Cegid should feel simple, transparent and genuinely supportive. If this sounds like somewhere you want to grow, we'd love to hear from you.
The Banking & Compliance team at Shine Over the next year, we will build a best-in-class banking & compliance unit from the ground up, automating reporting cycles, eliminating noise, and freeing our team to do what matters most: generating the sharp, forward-looking insights that drive growth. This is a rare opportunity to shape not just a function, but a high-performing team culture, one where we consistently deliver and exceed our top-line targets.
The Legal & Privacy function sits within Shine's Banking & Compliance division, operating across our European entities;
France, Germany, Denmark, Spain and the Netherlands. We are a lean, senior team navigating real regulatory complexity: post-merger integration, AI governance, and rapidly evolving data protection landscapes. Privacy here is not a box-ticking exercise, it is a core part of how we scale responsibly across borders, and we expect the same standard from everyone who joins us.
Your role as a Senior Privacy Counsel & DPO Germany As we scale rapidly across Europe, we are looking for a Senior Privacy Counsel & DPO Germany to join our legal and privacy function. You will be the officially designated Data Protection Officer for all German entities, declared to the relevant supervisory authorities, while also serving as a hands-on senior privacy expert across day-to-day operations and group-wide projects.
You will report directly to the Lead Privacy and you will have real influence in shaping how the group privacy function is built, while being the go-to privacy authority for everything Germany-specific.
In addition to that, you will bring only deep legal expertise, but a genuine drive to implement privacy management tools, design scalable processes, and identify where automation and AI can replace manual effort entirely. Job located in Berlin, with possibility of two remote working days per week.
What You'll Be Doing- Day-to-Day Privacy Operations & Statutory DPO
- Act as the officially designated DPO for our German subsidiaries before the relevant supervisory authorities, managing regulatory interactions and inquiries.
- Take full ownership of daily privacy operations: lead Data Protection Impact Assessments (DPIAs), Legitimate Interest Assessments (LIAs), and manage internal privacy workflows and requests.
- Draft, review, and negotiate Data Processing Agreements (DPAs) and privacy clauses with clients, vendors, and strategic partners.
- Own and continuously optimise the German Records of Processing Activities (ROPAs), ensuring accuracy, scalability, and audit readiness.
- Investigate and manage data breaches, security incidents, and complex Data Subject Requests (DSRs).
- Identify opportunities to automate privacy processes and implement scalable tools, ensuring efficiency and consistency in a lean team environment.
- Cross-functional Business Partnering…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).