Função: Jurídico

Tipo de Emprego: Tempo Integral

Localização: ILE DE FRANCE (except Paris)

País: France

Associate General Counsel - Data Privacy


L’Oréal is present in 140 countries on five continents. For more than a century, L’Oréal has devoted itself solely to one business: beauty. A unique and international portfolio of 34 complementary brands, generating over 25.8 billion euro of sales in 2016 : Lancôme, Garnier, L’Oréal Paris, Armani Parfums, YSL, Kerastase, Vichy, Kiehl’s, La Roche-Posay, Gemey Maybelline NY, Shu Uemura, NYX, Urban Decay, Diesel... 


L’Oréal is seeking an experienced privacy attorney to join the Global IT, Digital & Data Legal team


As Associate General Counsel - Data Privacy, you will be responsible for supporting and assisting the IT & Digital General Counsel and the Group Data Protection Officer in the coordination of data privacy activities across L’Oréal Group. 


In light of data protection legislation (with a particular immediate focus on the GDPR regulations coming into force in May 2018), and in close collaboration with the IT and Digital legal directors, you will be supporting the implementation and monitoring all data processing activities and assisting in the management of a wide range of data protection activities.


You will be involved in the development and effective implementation of the company’s strategic approach to data privacy and external requests in accordance with relevant legislation, regulations and codes of practice.



Responsibilities shall include:

  • Closely working with IT & Digital General Counsel, Group DPO, data privacy working groups and privacy champions to advise on and assist with GDPR requirements and compliance in relevant markets
  • Assisting the Group DPO in the relation with the Data Protection Authorities and interacting with EU data protection authorities as needed
  • Collaborating with Legal, Security, HR, Sourcing/Operations, and other departments, globally, on privacy-related matters
  • Reviewing data collection and use practices to ensure consistency and legal compliance
  • Producing reports on data protection risk
  • Assisting with privacy governance in general
  • Setting up Group privacy referential, tools and documentation packages
  • Participating in the setting up and development of new procedures or measures to be implemented embedding a culture of privacy by design and working to identify and resolve potential data privacy issues
  • Validating and maintaining relevant data protection registers to monitor and track data processing activities
  • Reviewing, drafting and negotiating commercial contracts with customers and vendors with heavy focus on privacy, data processing and data protection
  • Drafting privacy statements and other privacy disclosures
  • Providing timely, pragmatic data privacy legal advice to permit the rollout of critical and strategic projects
  • Advising on notification and other obligations in connection with security/privacy incidents and providing support for incident response program
  • Identifying business risks and requirements resulting from new and evolving privacy laws and regulations
  • Providing legal advice on related-data privacy matters to business and all relevant stakeholders, including legal and compliance directors to assist them in implementing the data privacy programme
  • Guiding and counseling L’Oréal stakeholders to ensure comprehension and coordination of the necessary internal and external data protection measures
  • Setting up and maintaining a Data Privacy learning programme and providing training and education to legal team colleagues and to business 



  • Six to ten years of privacy and data protection-related legal experience in-house with a global company and law firm experience
  • Academic qualification preferably in Law (alternatively in Information Technology)
  • Solid background in privacy and data protection law and an ability to apply that knowledge in a practical and pragmatic way
  • Strong drafting skills and experience of contract negotiation particularly with cloud providers and data processors
  • Comprehensive understanding of business environment and business models
  • Good awareness of the role of the legal function in a large business and have the ability to contribute actively in the taking of key business decisions
  • Strong experience in project management and change management 
  • Sound judgment, excellent problem-solving skills, practicality, a focus on business outcomes, and flexibility to manage multiple matters simultaneously
  • Ability to share knowledge and best practice effectively with wider team, with a view to enable self-service and quick turnaround of routine matters
  • Sound IT knowledge.
  • Excellent writing and communication skills
  • Ability to work collaboratively with people at all levels of the company
  • Ability to identify, prioritize and resolve issues quickly and effectively is essential
  • Proven skill at working across a global organization and having cultural dexterity
  • Fluent in English, other languages highly welcome