Privacy Specialist

About GitLab

GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating human progress. Our platform unites teams and organizations, breaking down barriers and redefining what’s possible in software development. Thanks to products like Duo Enterprise and Duo Agent Platform, customers get AI benefits at every stage of the SDLC. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software.

Job Summary

The Privacy Specialist supports GitLab’s data privacy program by assisting with privacy compliance activities, conducting privacy assessments, and helping to implement privacy policies and procedures. Working under the direction of senior privacy team members, Privacy Specialists help ensure GitLab’s practices align with global data protection regulations and internal privacy standards.

Key Responsibilities

• Assist with privacy impact assessments (PIAs), transfer impact assessments, and data protection impact assessments (DPIAs)
• Help respond to data subject requests (DSRs) and other privacy-related inquiries from customers and team members
• Assist in monitoring compliance with privacy representations in our policies and terms, and identifying areas for improvement
• Assist in the intake and production responses to law enforcement or other public authorities requests
• Support privacy training initiatives and contribute to privacy awareness programs
• Maintain records of processing activities and privacy compliance documentation
• Assist with the review of vendor data processing agreements
• Help track and monitor privacy regulatory developments and changes in data protection laws
• Support privacy incident response activities under the guidance of senior team members
• Collaborate with cross-functional teams including Legal, Security, Engineering, and Product to integrate privacy considerations into business processes
• Integrate privacy enhancing technologies or systems under the guidance of senior team members
• Assist with the maintenance of privacy statements, policies, and internal procedures

Requirements

• Minimum of 1-4 years of experience in privacy compliance, data protection, legal operations, or related field