Job Description
We are on the lookout for a Principal Legal Counsel, Privacy to join the Delivery Hero Data Protection Office on our journey to always deliver amazing experiences.
This role leads the legal practice at the Data Protection Office of the global Delivery Hero group, from our headquarters in Berlin, Germany. The lead privacy counsel acts as the legal thought leader within our global data protection organization, responsible for supporting the group in developing the group-wide data protection strategy. In this capacity, the Lead Privacy Counsel will work in a cross-jurisdictional and fast-changing environment, with a global impact throughout all countries of Delivery Hero’s operations. This individual contributor role reports to the global head of privacy.
Join the team that protects and enables Delivery Hero’s growth. In the Legal Team, you’ll support key initiatives by providing proactive legal guidance that aligns business goals with regulatory standards. Your work will help mitigate risks and ensure we’re positioned for sustainable, long-term success—making you a key contributor to our mission of delivering amazing experiences worldwide.
1. Analyze, assess and rationalize key privacy terms determining the priorities of the group’s global data protection strategy (such as ‘personal data’/’PII’, ‘controllership’, ‘automated decision-making’, ‘legitimate interest’, ‘terminal equipment’ etc.)
2. Support the team’s communications to the DH Group management board, supervisory board (including the audit & risk committees), and business leadership teams
3. Manage fine and other legal proceedings or investigations (including related mitigation plans)
4. Strategically support the global head of privacy in building and maintaining a collaborative working relationship with the group’s EU lead supervisory authority
5. Monitor ongoing developments around AI governance, platform work and digital services laws in the EU, and support the global head of privacy in determining DH Group’s positioning in a converging regulatory landscape
6. Drive the global strategy for government access requests and international data transfers within the group (responsible for the inter-company data transfer agreements and binding corporate rules)
Qualifications
7. Fully qualified to practice law in an EU jurisdiction, with a strong preference for attorneys qualified to practice law in Germany
8. At least 7 years of post-qualification legal experience gathered in-house or in private practice
9. Certified expertise on EU privacy laws and program management (IAPP CIPP/E, CIPM, TÜV DPO etc.)
10. Demonstrated experience in advising online technology companies and data-driven businesses, across multiple jurisdictions
11. Full working proficiency in German would be a plus