Shine exists to help freelancers and small business owners reclaim the joy of working for themselves.
The Banking & Compliance team at Shine
Over the next year, we will build a best-in-class banking & compliance unit from the ground up, automating reporting cycles, eliminating noise, and freeing our team to do what matters most: generating the sharp, forward-looking insights that drive growth. The Legal & Privacy function sits within Shine's Banking & Compliance division, operating across our European entities; We are a lean, senior team navigating real regulatory complexity: post-merger integration, AI governance, and rapidly evolving data protection landscapes. Your role as a Senior Privacy Counsel & DPO Germany
As we scale rapidly across Europe, we are looking for a Senior Privacy Counsel & DPO Germany to join our legal and privacy function. You will be the officially designated Data Protection Officer for all German entities, declared to the relevant supervisory authorities, while also serving as a hands-on senior privacy expert across day-to-day operations and group-wide projects.
Job located in Berlin, with possibility of two remote working days per week.
Act as the officially designated DPO for our German subsidiaries before the relevant supervisory authorities, managing regulatory interactions and inquiries.
Take full ownership of daily privacy operations: lead Data Protection Impact Assessments (DPIAs), Legitimate Interest Assessments (LIAs), and manage internal privacy workflows and requests.
Draft, review, and negotiate Data Processing Agreements (DPAs) and privacy clauses with clients, vendors, and strategic partners.
Own and continuously optimise the German Records of Processing Activities (ROPAs), ensuring accuracy, scalability, and audit readiness.
Investigate and manage data breaches, security incidents, and complex Data Subject Requests (DSRs).
Identify opportunities to automate privacy processes and implement scalable tools, ensuring efficiency and consistency in a lean team environment.
Act as a key advisor on AI-related privacy risks and opportunities, ensuring compliant and responsible use of data in AI systems.
cookie compliance, outreach regulations, consent frameworks).
Take a hands-on role in implementing scalable frameworks, including AI Governance policies aligned with the EU AI Act.
Minimum of 5 years of hands-on experience in a privacy role, preferably within a fast-paced B2B tech company, SaaS environment, or a top-tier law firm. You are an individual contributor who enjoys the day-to-day operational work (drafting DPAs, updating ROPAs, answering product questions) just as much as high-level strategy, and you proactively identify opportunities to streamline and automate workflows in a lean team environment.
Strong, practical knowledge of German (BDSG) and European (GDPR) data protection laws. Full professional proficiency in English and German is required.
We follow the principle of equal treatment to consider all job applicants and do not discriminate based on their gender, sexual orientation, colour, racial or ethnic origin, religion, disability, etc. 4️⃣ A 30' introduction with the Chief Banking & Compliance Officer, followed by a soft skills conversation to explore how we can best support your growth at Shine.