Privacy & AI Analyst

About Us

Perk (formerly TravelPerk) is the intelligent platform for travel and spend management. Built to tackle the time‑consuming, manual work that gets in the way of real work, our tools automate everything from travel bookings to expenses, invoice processing, and more. By eliminating this shadow work that wastes hours, erodes morale, and saps innovation, we’re on a mission to power real work, with real impact. We’re trusted by more than 10,000 companies worldwide, including Wise, On Running, Breitling, and Fabletics, and we’re tackling the 7 hours of lost productivity per employee each week, a $1.7 trillion problem. Founded in 2015, Perk has grown to a global company of more than 1,800 people across 12 offices worldwide, with headquarters in London and Boston. We combine innovation, control, and simplicity to transform how businesses work and how people feel at work. At Perk, we’re driven by values such as ownership, delivering a 7‑star experience, and working as one team. We value curiosity, purpose, and mindset, not just knowledge, to unlock the power in your potential. Our talent team brings together leading minds from the travel and SaaS industries, representing over 70 countries. If you’re excited about having a real impact and shaping how millions of people experience work, we’d love you on the team.

Privacy & AI Analyst

Barcelona | London

What’s the role?

Build with us. As Privacy & AI Analyst at Perk, you’ll help shape the future of privacy and AI in tech. You will operate at the crossroads of business, technology, and evolving regulations. You will have the opportunity to create visible impact from day one as Perk moves toward being an AI‑first company. Your work will help us build customer trust and empower teams with clear, scalable, and actionable privacy and AI governance that drives Perk’s growth. This role sits within Perk’s Legal & Privacy team and reports to the Senior Privacy Manager. You will work closely with our Privacy Counsel and DPO.

What will you be doing?

Strategy & Risk

• Help build and evolve Perk’s privacy and AI governance programs to enable growth while maintaining trust. Identify and assess privacy and AI risks, partner with relevant teams to tackle them, and collaborate with the Security team on data incident readiness, AI threats, simulations, and response.

Operations & Implementation

• Manage our privacy and AI tooling stack and vendor relationships, including automation and integrations. Keep policies and guidelines updated and handle day‑to‑day privacy inquiries—including DSR intake, responses, tracking, escalation, and run core accountability activities such as ROPAs, AI inventory, DPIAs/FRIAs, LIAs, TIAs, consent tracking, marketing opt‑outs, and third‑party due diligence.
• Partner with the Privacy Counsel and DPO to turn regulatory updates into practical, scalable guidance. Track and report key program performance metrics, trends, and risks to senior stakeholders.

Compliance & Certifications

• Maintain alignment of privacy and AI governance programs with GDPR, the EU AI Act, and other applicable laws. Support ISO 27701/27001/42001/23894 internal and external audits, evidence collection, and ongoing maintenance.

Product, Privacy & Responsible AI by Design

• Support privacy by design across product, engineering, and marketing—providing guidance on data flows, retention, minimization, AI ethics, and default settings so teams can ship with confidence and we can detect and mitigate risks early.

Culture & Enablement

• Consolidate a Privacy Champions program to spread shared ownership across the company group. Deliver training, communications, and knowledge resources that make privacy and AI governance real and approachable, enabling teams and users to self‑serve curated information and make informed decisions.

What capabilities will help you succeed?

Core qualifications and drivers

• Passion for Privacy & AI in the evolving tech space.
• 2‑5 years of experience in privacy, data protection, AI governance, compliance, information security, or a related field, ideally in a technology or SaaS environment.
• Practical knowledge of key Privacy & AI regulations and frameworks.
• Proven track record owning privacy operations end‑to‑end with minimal supervision.
• Ability to grasp complex technical concepts—think data flows, system architectures, anonymisation—and communicate fluently with engineers.
• Excellent problem‑solving and risk judgment, making decisions with limited oversight.
• Clear, concise communication tailored to technical and non‑technical audiences; strong drafting skills for policies, guidance, and training.
• Self‑starter, prioritising impact over effort and able to say “no” to less important tasks.

Preferred qualifications

• Bachelor’s degree in Law, Information Technology, or a related field.
• Recognized certifications such as CIPP, CIPM, CIPT, or AIGP.
• Hands‑on experience with privacy and governance platforms and automation (e.g., BigID, OneTrust, TrustArc).
• Exposure to standards and audits, especially ISO 27701 and 27001.

Seven Star Service / We are owners

• Proactivity: Anticipate customer needs, accelerate business growth, move at speed, and sustain delivery in a hyper‑speed environment.
• Accountability: Act as an owner, take an active role in project reviews, propose ways to be more effective without blaming.
• Innovation: Do things differently, love problem‑solving innovation, think in the future.
• Collaboration: Encourage innovation within teamwork and challenge the status quo.
• Honesty: Share failures to humanise, coach, and increase awareness; communicate transparently and build relationships.
• Communication: Enter conversations with openness, listen, and understand other viewpoints.

Impact over Effort

• Prioritisation: Review workload to focus on the most impactful matters; realistic and avoid over‑promising.
• Organisation: Focus on big wins and own workflow.
• Creativity: Communicate great ideas, prize ambition, find resolution pathways in challenging situations.

Be a good person

• Continual Growth: Ambition to level up and hold peers accountable; seek new opportunities.
• Curiosity: Drive to peel layers of processes/products, share influences, and nurture collaboration.
• Integrity: Build trust‑based relationships with stakeholders and give credit where due.

Where will the role take you?

We believe passionately in growth and development. Perk offers an employee value proposition with competitive compensation, equity, and a positive culture. A successful occupant will develop exceptional experience in a fast‑scaling global SaaS business, delivering internal privacy and AI governance capability at scale and driving tangible business outcomes. Promotion to Senior Privacy & AI Analyst is a future path, with more latitude to deliver outcomes and minimal micromanagement.

Our Benefits

• Competitive compensation and equity ownership.
• Generous vacation days plus public holidays.
• Private healthcare or gym allowance.
• Life insurance for financial protection.
• Annual summer party and other events.
• Wellbeing partner with therapy and coaching sessions.
• Flexible compensation plan.
• 17 weeks paid parental leave in the first year.
• 16 paid hours per year to volunteer.
• Up to 20 Work‑from‑Anywhere days per year.
• Language lessons in English, Spanish, and Catalan.
• Four‑week fully paid sabbatical after 5 years.
• Relocation support to our hubs.

How We Work

At Perk, we take an IRL‑first approach to work. Our team works together in‑person three days a week, requiring you to be based within commuting distance of our hubs. For certain roles, we can help with relocation from anywhere in the world. English is the official language at the office.

Protect Yourself from Recruitment Scams

Official communication from Perk will come from email addresses ending in @perk.com or @externalperk.com , our verified social media channels, or recruiters listed on our official LinkedIn page. We will never ask you to pay for equipment, training, or fees, request sensitive personal information early in the process, or communicate through unofficial apps like WhatsApp, Telegram, or Signal. If you receive a suspicious message claiming to be from Perk, do not respond. Forward it to for verification.