Data Privacy Lawyer

Location:

Remote (residence in Barcelona will be valued) Contract:

Full-time (40 hours per week)

About Us

We are a legal team specialized in privacy, data protection, and information security, working with national and international clients across multiple sectors. We are committed to innovation, continuous training, and a collaborative work environment that fosters professional growth in a constantly evolving field.

The Role

We are looking for a Lawyer with 3–4 years of experience in privacy and information security to join our team.

You will be a key member of the Privacy team and will also actively participate in the management and coordination of international compliance projects and certifications (ISO 27001, ISO 27701, among others).

You will advise global companies, contribute to the definition of their privacy, data protection, and information security strategies, and take part in cross-border projects involving multinational stakeholders.

Key Responsibilities

Advise clients on compliance with privacy and data protection regulations (GDPR, LOPDGDD, UK GDPR, LGPD, etc.). Draft and review contractual and legal documentation (DPAs, privacy policies, legal notices, etc.). Conduct risk assessments and DPIAs, proposing mitigation plans and improvement measures. Manage and coordinate international compliance and certification projects, ensuring alignment with global standards and timelines. Liaise with internal teams, external advisors, auditors, and multinational clients in the execution of cross-border projects and audits. Stay up to date with regulatory developments, privacy trends, and international certifications.Collaborate in the implementation and maintenance of Information Security Management Systems (ISO 27001, ISO 27701, ISO 22301, etc.).

Requirements

Law Degree (LL.B. or equivalent). 3–4 years of experience in a law firm or consultancy specialized in data protection and information security. Strong knowledge of the GDPR, LOPDGDD, and international privacy frameworks. Fluent English (minimum C1 level, written and spoken). Excellent legal and technical drafting skills. Self-driven, proactive, and results-oriented profile, with strong organizational and project management skills.

Nice to Have

Certifications such as CIPP/E, DPO, ISO 27001 Lead Implementer/Auditor. Experience implementing ISO standards (especially ISO 27001 and ISO 27701). Additional knowledge of cybersecurity and business continuity. Previous experience managing or coordinating international projects.

What We Offer

Permanent full-time contract. Flexible working model (remote work with the possibility of working on-site in Barcelona). Opportunity to lead and participate in high-impact international projects. Professional development plan with continuous training in privacy, compliance, security, and project management. Dynamic, young, and collaborative environment. Competitive compensation aligned with experience and profile.