About the Company

We’re partnering with a high-growth UK payments institution that has been recognised in the Times 100 Fastest Growing Companies for its rapid commercial momentum. Following successful European expansion and the achievement of its European regulatory licence, the business is now scaling across the UK, EU and beyond.

Backed by a US-listed parent company, the organisation combines entrepreneurial energy with robust compliance and governance frameworks. The culture is collaborative, diverse and ambitious — focused on shaping the future of payments while maintaining the highest standards of regulatory integrity.

As they continue to grow across new markets and products, we are now looking to appoint a DPO to lead privacy strategy, governance and compliance.

Role Overview

As DPO, you will take ownership of the company’s data protection and privacy agenda across multiple jurisdictions. This is a high-impact, visible role that blends legal advisory responsibilities with operational leadership in privacy, data governance and regulatory compliance.

You will work closely with the General Counsel, executive leadership, technology, risk and compliance teams to shape strategy, provide defensible legal advice, and ensure privacy frameworks are robust, scalable and commercially enabling.

This role is ideal for someone who enjoys both legal thinking, entrepreneurial flexibility and practical delivery, and who thrives in a fast-moving, international setting.

Key Responsibilities

• Act as the company’s Data Protection Officer, ensuring compliance with UK GDPR, EU GDPR and other applicable data protection regimes.
• Provide legal advice on data protection and privacy matters to the business, including product, risk, technology and commercial teams.
• Develop, implement and maintain a comprehensive privacy governance framework, including policies, procedures and standards.
• Lead privacy risk assessments (including DPIAs), cross-border data transfer analyses, and vendor data protection reviews.
• Advise on data processor / controller contracts, standard contractual clauses, binding corporate rules and similar mechanisms.
• Engage with regulators and supervisory authorities as required; own responses to regulatory enquiries and audits.
• Support privacy considerations in new product development and organisational initiatives, including AI governance and operational resilience.
• Deliver training and awareness programmes across the business to embed privacy-by-design and culture of compliance.
• Monitor legal and regulatory developments in privacy, data protection and related fields, and ensure the business responds appropriately.

Requirements

• UK/EU qualified Solicitor with a strong track record in data protection, privacy and regulatory compliance (ideally within payments, crypto or FinTech).
• Significant in-house experience advising on GDPR, cross-border transfers and complex data processing arrangements.
• Comfortable providing legal advice at senior/executive level, with demonstrable experience translating law into practical business guidance.
• Experience working with multi-jurisdictional frameworks, including UK, EU and other international regimes.
• Evidence of managing privacy frameworks in a high-growth, regulated environment is highly desirable.
• Strong stakeholder management skills with the ability to influence cross-functionally.
• Commercially minded with an appreciation for product and technology risk, without losing sight of legal and regulatory mandates.
• Excellent judgement, clear communicator and a pragmatic problem-solver.