Privacy Compliance Counsel

Genesys empowers organizations of all sizes to improve loyalty and business outcomes by creating the best experiences for their customers and employees. Through Genesys Cloud, the AI-powered Experience Orchestration platform, organizations can accelerate growth by delivering empathetic, personalized experiences at scale to drive customer loyalty, workforce engagement, efficiency and operational improvements.

We employ more than 6,000 people across the globe who embrace empathy and cultivate collaboration to succeed. And, while we offer great benefits and perks like larger tech companies, our employees have the independence to make a larger impact on the company and take ownership of their work. Join the team and create the future of customer experience together.

Genesys is seeking a Privacy Compliance Counsel to help build, operate, and continuously strengthen our global privacy and AI compliance program in a fast-paced cloud environment. This role combines operational privacy leadership with customer-facing advisory work, partnering closely with Product, Engineering, Security, Risk, and Commercial Legal. At Genesys, we are transforming the customer experience landscape with empathy, AI innovation, and global impact. Joining Genesys means becoming part of a global team that flies in formation, embraces empathy in decision-making, and goes big in shaping responsible AI and data practices worldwide.

This position will dedicate approximately 70 percent of time to privacy and AI compliance operations and 30 percent to supporting privacy-heavy commercial transactions.

Reporting Line: Chief Privacy Officer and EU Data Protection Officer

Level: 3 to 5 years PQE (mid-level)

Key Responsibilities

Privacy and AI Compliance Program (approximately 70%)

Operational GDPR and Global Privacy Compliance

Lead and mature core GDPR compliance processes, including Data Protection Impact Assessments (DPIAs), including AI-related assessments
Build, maintain, and govern Records of Processing Activities (RoPA) across business units
Conduct Transfer Impact Assessments (TIAs) and design appropriate supplementary measures for international data transfers
Manage and enhance data subject rights processes, including access, deletion, portability, objection, and restriction, with clear playbooks and escalation paths

AI Counseling, FRIA and AISIA

Provide practical front-line legal counseling on AI use cases at the intersection of GDPR, the EU AI Act, and fundamental rights frameworks
Support or lead AI System Impact Assessments (AISIA) and equivalent AI risk assessments
Conduct or support Fundamental Rights Impact Assessments (FRIA) for high-risk or data-intensive AI systems
Partner with Product, Data Science, and Security to embed AI governance into design, development, and deployment processes

Privacy by Design and by Default

Embed Privacy by Design and by Default principles into product and feature lifecycles
Participate in product reviews and change management forums
Identify privacy and AI risks and propose technically feasible mitigation strategies
Ensure documentation and implementation of minimisation, purpose limitation, retention, access controls, and logging requirements

Policies, Governance and Documentation

Draft and maintain privacy notices and layered transparency statements
Develop and update internal policies and guidelines, including data retention, classification, legitimate interests assessments, and repurposing analyses
Strengthen RoPA governance standards and internal guidance materials
Contribute to governance forums and support risk-based decision making and remediation tracking

Rights Handling, Incidents and Oversight

Support the EU DPO in monitoring compliance through reviews, audits, and metrics
Partner with Security and Incident Response teams on personal data breach assessments and regulatory notification analysis
Provide privacy and AI due diligence guidance for vendors and sub-processors

Regulatory Horizon Scanning

Monitor and interpret developments under GDPR, EDPB'S opinions, as well as Member State's guidance on data protection and AI.

Track the EU AI Act, Digital Services Act, Data Act, NIS2, and related digital regulations

Translate regulatory developments into practical program updates, playbooks, and stakeholder training

Commercial Support, Privacy and Data (approximately 30%)

Customer-Facing Privacy Contracting

Draft, review, and negotiate Data Processing Agreements and related security, audit, and assistance clauses
Advise on data transfer mechanisms, including Standard Contractual Clauses, transfer addenda, and supplementary safeguards
Act as a subject matter expert for privacy and AI provisions in master service agreements and cloud contracts, particularly in regulated sectors

Customer Due Diligence and RFP Support

Respond to customer privacy and AI questionnaires, RFIs, and RFPs
Participate in customer discussions to clearly explain Genesys’ data processing practices, privacy controls, and AI risk mitigation strategies

Playbooks and Templates

Maintain and refine negotiation playbooks, fallback positions, and templates for privacy and AI-related clauses

Cross-Functional Enablement

Translate complex privacy, AI, and security requirements into clear, business-friendly guidance
Design and deliver training for Product, Engineering, Commercial, and other teams on DPIAs, DSAR handling, AI impact assessments, Privacy by Design, and international transfers
Collaborate with global stakeholders to align on risk appetite, decision-making frameworks, and escalation processes

Required Qualifications

3 to 5 years PQE, qualified or legally trained in an EU Member State

Strong hands-on experience in privacy compliance operations, including most of the following

Conducting and documenting DPIAs and comparable risk assessments
Maintaining or auditing RoPA and related records
Conducting or advising on TIAs and transfer risk assessments
Supporting Privacy by Design and by Default in product or engineering environments
Solid knowledge of GDPR and related EU frameworks, with demonstrated interest in the EU AI Act, DSA, Data Act, ePrivacy Directive, and NIS2
Experience in cloud or SaaS environments and ability to engage effectively with IT, Security, and Engineering teams
Demonstrated ability to manage multiple stakeholders and competing priorities in a global matrix organisation
Strong ethical foundation and balanced, risk-aware judgment
Excellent command of English as working language

Preferred Qualifications

• IAPP certifications such as CIPP/E, CIPM, or CIPT
• Experience designing or implementing supplementary transfer measures
• Experience with AI impact assessments, FRIA, or AISIA frameworks
• Experience interacting with supervisory authorities or participating in audits
• Knowledge of US or other major non-EU privacy regimes
• Fluency in French or another EU language

Core Competencies

Pragmatic and solutions-oriented legal mindset

Strong stakeholder management and influencing skills

Excellent written and verbal communication skills in English

Ability to build trust, influence without formal authority, and uphold key compliance standards

Comfortable operating in a high-growth, evolving global technology environment

If a Genesys employee referred you, please use the link they sent you to apply.

About Genesys

Genesys® empowers more than 8,000 organizations worldwide to create the best customer and employee experiences. With agentic AI at its core, Genesys Cloud™ is the AI-Powered Experience Orchestration platform that connects people, systems, data and AI across the enterprise. As a result, organizations can drive customer loyalty, growth and retention while increasing operational efficiency and teamwork across human and AI workforces. To learn more, visit www.genesys.com.

Reasonable Accommodations

If you require a reasonable accommodation to complete any part of the application process, or are limited in your ability to access or use this online application and need an alternative method for applying, you or someone you know may contact us at reasonable.accommodations@genesys.com.

You can expect a response within 24–48 hours. To help us provide the best support, click the email link above to open a pre-filled message and complete the requested information before sending. If you have any questions, please include them in your email.

This email is intended to support job seekers requesting accommodations. Messages unrelated to accommodation—such as application follow-ups or resume submissions—may not receive a response.

Genesys is an equal opportunity employer committed to fairness in the workplace. We evaluate qualified applicants without regard to race, color, age, religion, sex, sexual orientation, gender identity or expression, marital status, domestic partner status, national origin, genetics, disability, military and veteran status, and other protected characteristics.

Please note that recruiters will never ask for sensitive personal or financial information during the application phase.