Our client, a global tech leader, is seeking an experienced lawyer to serve in a lead capacity, advising on all aspects of global privacy laws and regulations, including data protection, retention, security and breach rules.
Responsibilities for this role will include the following:
• Create and drive risk-based enterprise-wide data privacy strategy to help ensure appropriate collection, handling and use of data.
• Support in negotiation of privacy, information security and compliance terms in technology, vendor, and service provider contracts.
• Conduct privacy impact analyses, risk assessments and due diligence for existing and new third parties to address privacy and corporate compliance risks and legal requirements.
• Advise and collaborate with data analytics, information security and business teams on artificial intelligence (AI) governance, use and risk mitigation.
• Monitor and assess legislative, regulatory, and enforcement developments in privacy law and corporate compliance matters globally.
• Lead California (CCPA/CPRA) and other US state privacy law compliance efforts, including analyzing applicability of relevant statutes to certain third parties.
• Partner with the information security team on handling data security incidents/events.
Applicants must have the following qualifications in order to be considered:
• Strong academic credentials, including a J.D. degree from an accredited law school, plus 10+ years of privacy law.
• Hands-on experience interacting directly with privacy and data protection regulators and regulators of US public companies.
• Experience in managing data breaches and other security incidents.
• Certifications such as Certified Information Privacy Professional (CIPP/US, CIPP/E) are desirable.
• Experience with artificial intelligence at the intersection with data protection is a plus.
