Skip to content

Data Protection Officer

  • On-site
    • Kaunas, Lithuania
    • Vilnius, Lithuania
    +1 more
  • Legal

Job description

When was the last time when you rolled your sleeves up and built a brand from scratch to millions of customers globally? Yup, we get it - it’s quite a rare thing!

On the other hand - we built a few last year. A few more in 2021’s. And in 2020’s as well. Join us and we’ll show you how!
We, Orbio World, are eCommerce fanatics who love building D2C brands. You could even call us eCommerce experts, but you know - we think that 100M+ revenue a year is just the beginning.

Our Legal team contributes a lot to the success of our products by solving the most diverse, complex, and fully-international legal issues on a big scale. With an "out of the box" approach to the legal profession and a rich knowledge of all the ins and outs of a big e-commerce business, our lawyers tackle all problems in the wink of an eye.

We are now looking for a passionate and experienced Data Protection Officer  to join our dynamic team! Collaborate with a group of brilliant and driven professionals, enjoy the freedom to make impactful decisions, and tackle challenges with a creative yet practical approach.

Looking for a role where you can truly make a difference? If so, this is the opportunity you've been waiting for!


If so, be ready to:

  • Ensure compliance with GDPR and other data protection regulations;
  • Act as the main point of contact for data protection authorities and internal stakeholders;
  • Monitor data processing activities and conduct regular compliance audits;
  • Develop, implement, and maintain data protection policies and procedures;
  • Provide training and guidance to employees on data protection best practices;
  • Handle data breaches, assess risks, and develop mitigation strategies;
  • Conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities;
  • Oversee contracts to ensure proper data protection clauses are included.


A bit about the perks:

  • Stay focused and productive by taking a day off on your Birthday, working 2 hours shorter on Fridays, and working from home 1 day each week plus extra 20 days during the whole year;

  • Sharpen your knives in CXL trainings, Coursera, Skillshare, Audible subscriptions, take a book from the office library or order a needed one from anywhere, use your personal training budget whenever you need to visit some conferences, hear out inspiring guests’ lectures and so on;

  • Refresh or even reset in various group sports activities and events which we’ll cover for you and the team that is going with you. Use prepaid psychotherapist sessions if you see a need for your mental health uplift and keep yourself safe with personal accident insurance;

  • Reconnect through FIFA matches, learning events, knowledge-sharing talks, various team-building events, quarterly team retreats, or workation trips like the last one in Turney;

  • By the way, sharing is caring and we love to share our success and use it to make an impact. Orbio Kids, charity auction, Orbio Academy, donations to UA, and Lithuanian communities - there are dozens of ways to make a change.

  • Salary.  5000 - 6600 Eur/month (gross), depending on individual experience.

Job requirements

Our expectations for you:

  • Strong expertise in GDPR, data protection laws, and related regulations (experience working with US, CA, AU regulations and external providers would be an advantage);

  • Proven legal experience in privacy and data protection roles;

  • Excellent analytical skills, with the ability to assess complex legal risks and effectively manage large-scale projects;

  • Strong communication skills for advising stakeholders and drafting legal documentation;

  • Familiarity with IT systems, cybersecurity, and their legal implications on data protection;

  • Ability to manage multiple projects and prioritize effectively in a dynamic environment.

Nice to have:

  • Experience leading projects related to IT data architecture segmentation and reorganization;

  • Experience managing and structuring access rights across company groups;

  • Certifications in data privacy or data protection (e.g., CIPP/E, CIPM, CIPT, or equivalent);

  • Experience working with privacy regulations and frameworks in jurisdictions such as the US, Canada (CA), and Australia (AU);

  • Experience with cross-border data compliance and global privacy strategies.

or