Customer Contracts & Commercial Agreements:
- Negotiate and draft SaaS subscription agreements, master service agreements, and license agreements
- Supportthesales team in complex deal negotiations with enterprise customers
- Draft and negotiate professional services agreements, implementation agreements, and SOWs
- Negotiate data processing agreements (DPAs) and business associate agreements (BAAs)
RFP/RFI Management & Standard Templates:
- Lead legal and compliance sections of customer RFPs, RFIs, and security questionnaires
- Develop and maintain library of standard RFP responses for legal, security, and compliance topics
- Develop self-service contract templates for standard deal scenarios and standardize customer contract templates(SaaS agreement, DPA, Order Form)
Data Protection & GDPR Compliance:
- Serve as Data Protection Officer (DPO) or coordinate with external DPO and handle data protection authority inquiries and audits
- Maintain and update Records of Processing Activities (ROPA),Conduct Data Protection Impact Assessments (DPIAs) for new products and features,Manage data subject access requests (DSARs) and data breach notification procedures
- Review and negotiate data processing agreements with customers and subprocessors;maintain subprocessor register and manage subprocessor notification processes
Product Compliance & Information Security:
- Drive and maintain ISO 27001 certification and ongoing compliance and coordinate annual ISO 27001 audits
- Develop and update information security policies and procedures
- Review product features for compliance with security and privacy standards
- Ensure compliance with industry-specific regulations (e.g., NIS2, DORA if applicable)
Cross-Functional Collaboration & Governance:
- You are partner with Sales, Product, Customer Success on commercial legal matters and collaboration with Finance on contract revenue implications and billing terms