Experience
7 yrs required
Location
Boston, MA, United States
Posted on
Nov 10, 2022
Profile
Lead Global Privacy Counsel
The candidate will serve as the internal privacy expert and handle privacy and data protection-related inquiries from a wide range of groups across the company (such as information security, product, marketing, public relations, strategic partnerships, engineering, customer service and people operations), providing strategic and practical advice and counsel on legal requirements and compliance. Lead and guide the company’s data privacy compliance program. Be an escalation point for negotiation, drafting, and review of contracts that involve sharing, using or managing personal information (e.g., vendor/service provider agreements, customer agreements, data processing, data transfer, data usage agreements, etc.) to ensure appropriate privacy contractual language and consideration of internal measures needed to support such arrangements. Assist in the creation, maintenance and implementation of policies, processes, data inventory/record of processing and associated documentation relating to the processing of data, incidents, initiatives, activities and audits. Guide Company’s response to any privacy inquiries or data subject rights requests and collaborate with cross-functional teams to respond in a timely manner. Perform Impact Assessments to identify and mitigate privacy risks resulting from current data processing activities and new business initiatives. Support and advise on regular audits and monitoring of company activities to ensure company compliance with applicable data privacy requirements. Prepare and conduct awareness and training efforts as needed to increase employee understanding of legal data privacy obligations and compliance, company data privacy policies, data handling practices and procedures. Have expertise in areas of privacy and data protection (including UK GDPR/GDPR, ePrivacy Directive and related regulations, CCPA, CPRA (and similar state privacy laws coming into effect), BIPA, AI, IoT and privacy by design), regulatory guidance and enforcement actions. Work closely with cross-functional stakeholders to continue to develop and refine the company’s incident response plan. Partner with IT to develop and maintain a comprehensive document retention policy and related processes.
Company info
Sign Up Now - EmploymentCrossing.com