Description

Senior Privacy & Commercial Counsel

Location: Remote (Canada)

Department: Legal

Reports to: Co-Founders

Type: Full-time, Permanent

Salary: CA$180,000

Website: https://prospeo.io

About Prospeo

Prospeo is a B2B SaaS sales intelligence platform used by over 2,000 companies worldwide. We help sales teams find verified contact data with 97%+ accuracy through triple verification, and Clay, the leading GTM data platform, ranks Prospeo as the most accurate provider in the industry. Our team of 20 is scaling fast, and we are looking for our first dedicated legal hire to build and own the legal function as we scale.

The Role

Data privacy is the heart of this role. Operating a data-driven product means privacy operations sit at the core of how we work, and you will own them day to day. On top of that, you will own our commercial contracts, and you will be the internal coordination point for any litigation or regulatory matter that requires outside specialists.

This is a hands-on individual contributor role with full autonomy, reporting directly to the co-founders. You may also take on Data Protection Officer responsibilities as the function develops. You will not litigate matters yourself: when a dispute or regulatory matter calls for specialist representation, you decide that outside counsel is needed, scope and brief the engagement, and manage the relationship with the external firm.

The right person is a hands-on lawyer who thrives in ambiguity, brings strong commercial judgment, and is comfortable using AI tools to extend their reach across a broad scope.

Responsibilities

Data Privacy (Core)

  • Run the day-to-day privacy program across GDPR, UK GDPR, CCPA, PIPEDA, and Quebec Law 25
  • Handle data subject access and deletion requests, and build scalable systems to manage them at volume
  • Maintain privacy policies, records of processing activities, and internal privacy training
  • Manage data broker registrations and regulatory filings across applicable jurisdictions (including California, Vermont, Oregon, Texas)
  • Be responsible for our data-protection obligations and act as the internal owner of privacy compliance; you may also take on Data Protection Officer responsibilities
  • Own the legal side of vendor due diligence and inbound DPA negotiation

Commercial Contracts

  • Draft, review, and negotiate commercial contracts: customer agreements, DPAs, NDAs, partnership agreements, and vendor agreements
  • Own, improve, and standardize Prospeo’s contract templates, playbooks, and fallback positions
  • Serve as the go-to legal resource for the company
  • Advise the founders on legal risk in product, sales, marketing, and partnership decisions

Litigation & Regulatory Coordination

  • Serve as the internal point of contact for litigation, regulatory, and other adversarial matters
  • Own incoming correspondence from regulators, complainants, and counterparties, and manage it professionally
  • Identify when a matter calls for outside specialist counsel, scope and brief the engagement, and manage the relationship with external firms
  • Keep the founders informed on status and next steps, so the business keeps running while specialists handle representation

Requirements

  • A law degree (JD or equivalent) and bar admission in good standing with a Canadian law society
  • CIPP/E certification (required)
  • 4+ years of post-call experience in commercial and privacy legal work
  • Hands-on experience with GDPR and/or CCPA, including managing data subject requests and drafting/negotiating DPAs from both sides
  • Strong contract drafting, review, and negotiation skills across DPAs, NDAs, ToS, partnerships, and vendor agreements
  • Comfortable using AI tools (Claude, ChatGPT, AI-enabled legal tooling) as part of daily workflow, while applying legal judgment to validate every output
  • Highly autonomous and self-directed, able to operate without a legal team in a fast-paced startup environment
  • Fluent professional English

Nice to Have

  • CIPP/C, CIPP/US, or CIPM
  • Experience at a B2B SaaS company
  • Experience in the sales intelligence, data enrichment, or data brokerage industry
  • Familiarity with Canadian corporate and employment law
  • Familiarity with security-compliance frameworks such as SOC 2 or ISO 27001
  • Experience with privacy operations tooling (OneTrust, DataGrail, Transcend, Securiti)
  • Experience with CLM tooling (Ironclad, LinkSquares, Spotdraft)

What We Offer

  • Competitive salary: CA$180,000
  • Full ownership of a critical function with a direct line to the co-founders
  • Fully remote within Canada, with optional access to our Toronto office (on-site parking)
  • Growth opportunity in a fast growing company, with performance reviews every 6 months
  • AI-forward environment: we provide modern AI tooling and expect you to use it to work smarter

Benefits:

  • Extended health care
  • Paid time off (4 weeks per year)
  • Work from home
  • Gym membership
  • Flexible schedule
  • Work Location: Remote, within Canada