Data Privacy - Transactional Attorney in Boston, MA

In-House

Boston, MA

Data Privacy - Transactional Attorney in Boston, MA

Attorney

Min 5 yrs required

No

Job Title: Corporate Counsel, Global Privacy and Data Protection

Job Responsibilities:
- Advise on emerging global privacy laws and regulations that impact data privacy and data security, identifying trends and potential impacts on business activities.
- Coordinate with product and engineering teams to evaluate and design products and technologies for compliance with privacy and data protection laws.
- Collaborate with the company’s Chief Information Security Officer (CISO) to help develop and maintain best-in-class privacy, security, and data protection practices across the company.
- Draft and negotiate complex agreements, including professional services, development, and supplier agreements with various merchants, partners, and vendors.
- Conduct privacy training and awareness programs for employees to foster a privacy-aware culture.
- Respond to data subject access requests (DSARs) and inquiries from regulatory authorities regarding privacy practices.
- Grow into new areas to support the business, such as warranty and consumer protection, global product regulatory rules, claims review, and global supply chain.
- Work autonomously as well as part of a team, coaching and mentoring others (including non-attorneys) under tight deadlines while managing multiple priorities.
- Support investigation, analysis, remediation, and notification of privacy and security incidents.

Education and Experience Information:
- and 5+ years of relevant experience.
- Admission to a State Bar and the ability to register as in-house counsel.
- Specific experience with privacy and data protection laws such as CCPA, LGPD, CAN-SPAM, HIPAA, GDPR, e-Privacy Directive, and other applicable laws is required.
- Experience providing risk-based and pragmatic advice, including to Senior Management level stakeholders, regarding outstanding privacy and data protection aspects of product development, commercial negotiations, and on matters involving the processing of employee personal data.
- Experience advising on incident response protocols, data breach notification obligations, and regulatory investigations.
- Experience with the operation of compliance programs is a plus.
- Experience drafting and negotiating commercial agreements.
- Desire to learn and grow, stretching into areas that are not core strengths as needed to support business initiatives.
- Prior in-house experience supporting global high-growth companies is strongly preferred.

Salary Information:
The text does not provide specific salary information for this role.

Additional Information:
This role is based in the company office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office. The company encourages applications from candidates who may not meet every qualification but are interested in the role, as they value character as much as experience. The company is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment, and an employer who violates this law shall be subject to criminal penalties and civil liability.