Data Protection Officer

Get AI-powered advice on this job and more exclusive features. What if advertising strategies were more profitable for both ad players and consumers? Happydemics empowers advertising players worldwide to precisely measure the ROI of their campaigns. Utilizing a unified methodology and cutting-edge technologies, we streamline performance measurement and campaign optimization. As the trusted partner of thousands of players globally, our SaaS delivers key analytics in a privacy-friendly environment, setting a new standard in advertising effectiveness. As Happydemics’ first DPO / Security & Compliance Lead, you will create, structure, and manage the entire privacy, compliance, and security governance strategy. You act as the single point of reference for all matters related to personal data, security standards, and regulatory obligations. You build the processes, tools, documentation, and compliance standards needed to support the company’s growth. Responsibilities Compliance Structuring & Governance Design and deploy the end-to-end GDPR & privacy compliance strategy. Advise leadership and guide data-related decisions. Build and maintain the registers (RoPA), internal policies, procedures, privacy notices, and records. Ensure alignment between client commitments, internal practices, and regulatory requirements. Contract Management & Client / Partner Relations Act as the sole internal and external contact for data protection. Manage and negotiate DPA, SCC, and security & privacy contractual clauses. Respond to RFIs / security questionnaires. Oversee security assessments (privacy / data governance scope). Define robust processes for partnership refusals or regulatory constraints. Internal Audits, Continuous Compliance & Certifications Lead regular internal audits. Maintain all compliance frameworks (SOC 2, Vanta, security policies, etc.). Produce the annual activity report and action plans. Ensure regulatory, technological, and competitive monitoring and adjust processes accordingly. Risk Management, Incident Handling & Privacy by Design Implement and operate the data breach management process (analysis, actions, CNIL notification if required). Conduct DPIAs and risk assessments for projects. Work with Product & Tech teams to integrate Privacy by Design / Default. Support product and data evolution (contextual vs user-level models, US privacy developments, etc.). Data Subject Rights Management Oversee the full process for data subject rights requests (clients, former clients, candidates). Ensure compliant, complete, and timely handling of all requests. Training, Awareness & Internal Culture Build and deliver internal training programs on security and data protection, supporting teams with lower awareness. Promote a strong data protection culture across the company. Ensure teams understand the contractual commitments made to clients and apply them correctly. Profile 10 years of experience, including 3–5 years in AdTech / Martech / Data (mandatory). Experience in both a large organization and a scale-up / SME (ability to structure and execute). Experience as an in-house Legal Counsel is a plus. GDPR + US privacy complex DPA negotiation and management privacy by design with tech / product teams building processes from scratch European + UK regulations (required), APAC + US (nice to have) Key Skills Strong understanding of data flows, technical stack, and business implications. High autonomy: able to build everything from scratch (processes, documentation, tools, governance). Cross-functional leadership, pedagogy, and diplomacy. Ability to simplify complex topics and engage teams. Recruitment process Join a fast-growing SaaS company and play a key role in our growth Professional development: access to continuous training and professional growth opportunities (vertical and/or horizontal mobility) Recognition and rewards: competitive fixed and variable pay Autonomy and responsibility: encouragement to take initiatives and make a real impact on projects. Innovative projects: participation in groundbreaking projects in the field of advertising effectiveness. Cutting-edge technologies: access to advanced tools and technologies to carry out your missions. International work environment: collaborate with an innovative, passionate and international team. HQ in the heart of Paris Flexible work options: remote work options and flexible office policy for better work-life balance. Transparency and open communication: between teams and management Recruitment Process: Video call with Audrey (HR Manager). Interview with Jérôme (CPO) and Marie (DAF) for one hour (video or in-person). Interview with Guillaume (General Manager) and Tarek (CEO) for one hour to confirm the fit. Seniority Level Mid-Senior level Employment Type Full-time Job Function Analyst, Information Technology, and Project Management Industries Software Development, Marketing Services, and Broadcast Media Production and Distribution Referrals increase your chances of interviewing at Happydemics by 2x Get notified about new Data Protection Officer jobs in Paris, Île-de-France, France. We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr