1,028 Privacy Law jobs in the United States

**The Position**
Genentech, a member of the Roche Group, seeks an experienced, collaborative privacy attorney to join the Legal Department as a **Senior Counsel Specialist, Assistant General Counsel** , reporting to the company's Chief Privacy Officer in the Genentech Privacy Office. This position will be responsible for advising on and promoting compliance with data protection and privacy laws and regulations affecting business activities primarily in the United States. You will develop and implement related policies, practices, and training programs, and help business stakeholders to understand and address data protection and privacy issues as they emerge in the development of new products and technologies. You will be expected to stay abreast of developments and trends in data protection and privacy laws, as well as regulations and enforcement.
**The Opportunity**
Key responsibilities of this individual contributor role includes the following:
+ Act as a key internal point-of-contact and subject matter expert on privacy and data protection, providing practical, timely, strategic, and high-quality legal advice on data privacy and security matters.
+ Influence strategic implementation of privacy legal and compliance requirements across the organization.
+ Drive privacy strategy and implementation based on continuous monitoring of new and evolving privacy laws, enforcement, and litigation across jurisdictions.
+ Draft, update, and implement internal privacy policies, procedures, and guidances, and external privacy notices and consent language, to reflect evolving legal requirements and industry best practices.
+ Develop standards, templates, playbooks, and training for drafting and negotiation of data processing agreements.
+ Provide legal support for the strategic reviewing, drafting, and negotiating of privacy and data security terms in contracts with business partners and vendors, including data processing agreements and data protection terms in clinical research agreements.
+ Provide advice, education, training, and legal direction on data protection laws impacting business operations and contractual relationships.
+ Advise on data privacy, legal risk identification and mitigation efforts, as well as data privacy compliance efforts.
+ Develop content for privacy training materials and other communications to increase employee understanding of company privacy policies, data handling practices and procedures and legal obligations, as well as to ensure awareness of "best practices" on privacy and data security issues.
+ Review Privacy Impact Assessments (PIAs) and advise on the management of complex privacy matters involving systems and data processing activities.
+ Provide legal counsel on investigations involving reports of inappropriate or unauthorized access, loss or disclosure of personal data, including advising on potential liability, identifying legal obligations, and supporting incident response efforts.
+ Collaborate with External Affairs colleagues on opportunities to influence privacy and data security legislation.
+ Participate in industry group meetings to stay updated on best practices and emerging trends.
+ Partner and align with global colleagues on development and implementation of compliance and training programs.
**Who You Are**
Qualifications and experience needed for this role include the following:
+ A U.S. law degree (J.D.) and current "good standing" admission to at least one U.S. state bar, or be eligible to apply to California's Registered In-House Counsel program
+ 12+ years of experience as a practicing attorney, in-house and/or at a law firm, including at least 5+ years of direct, hands-on experience providing legal counseling on data privacy and security matters to biotechnology and/or pharmaceutical companies.
+ CIPP/US certification required; AIGP certification is a plus.
+ Subject matter expert on requirements of data protection and privacy legal issues affecting the business activities of a research-based biotechnology and/or pharmaceutical company.
+ Comprehensive understanding of relevant privacy and consumer protection statutes, regulations and guidance, such as comprehensive state privacy laws, Section 5 of the FTC Act, California Confidentiality of Medical Information Act (CMIA), Washington My Health My Data Act, state breach notification laws, HIPAA, EU General Data Protection Regulation (GDPR), TCPA, and CAN-SPAM.
+ Understanding of the emerging AI legal landscape, including an understanding of the requirements of the Colorado AI Act and related legislation.
+ Substantial experience assessing and practically mitigating privacy and data protection legal risks.
+ Experience managing and supporting a corporate privacy program.
+ Ability to deliver clear, concise and practical advice regarding challenging legal issues to legal and non-legal colleagues, including senior management.
+ Strong organizational skills, ability to multitask and prioritize effectively, take initiative, lead projects, and work independently and collaboratively with others.
+ Demonstrated experience taking ownership of issues and providing timely, actionable advice.
+ Demonstrated enterprise-wide thinking and growth mindset.
This role is located onsite at Genentech's South San Francisco, California campus, and a remote working arrangement is not available.
Relocation benefits are not available for this position.
The expected salary range for this position based on the primary location of California is between $203,800 and $378,400. Actual pay will be determined based on experience, qualifications, geographic location, and other job-related factors permitted by law. A discretionary annual bonus may be available based on individual and Company performance. This position also qualifies for the benefits detailed at the link provided below.
Benefits ( is an equal opportunity employer. It is our policy and practice to employ, promote, and otherwise treat any and all employees and applicants on the basis of merit, qualifications, and competence. The company's policy prohibits unlawful discrimination, including but not limited to, discrimination on the basis of Protected Veteran status, individuals with disabilities status, and consistent with all federal, state, or local laws.
If you have a disability and need an accommodation in relation to the online application process, please contact us by completing this form Accommodations for Applicants ( .

Job Description

Job Description

Hybrid Law Firm Senior Associate Privacy
Salary Range of 150K-210K Plus Yearly Bonus Offered
Excellent compensation package plus benefits
Atlanta, GA

A nationally recognized law firm is seeking a seasoned Privacy and Data Protection Senior Associate to help expand a rapidly growing Privacy and Data Protection Practice. This strategic hire will support increasing client demand and strengthen the team’s ability to counsel sophisticated clients on complex and evolving data privacy issues.

About the Role:
The ideal candidate will bring extensive experience advising clients on U.S. and international privacy laws and frameworks, providing practical and forward-thinking legal guidance on compliance, risk management, incident response, and strategic data use. You’ll serve clients across industries such as technology, healthcare, education, media, retail, and financial services.

In this role, you’ll collaborate closely with other senior attorneys and practice leaders, mentor junior lawyers, contribute to thought leadership, and play a key role in expanding one of the firm’s fastest-growing practices.

Why Join:

This opportunity offers a national platform and entrepreneurial environment where experienced attorneys can lead and grow. The Privacy and Data Protection team is collaborative and interdisciplinary, working closely with practices across corporate, employment, healthcare, and IP law. Attorneys are supported by strong administrative resources, a national footprint, and firm-wide investment in privacy as a strategic area of growth.

Requirements

• Deep subject matter expertise in domestic and global privacy laws (GDPR, CCPA/CPRA, HIPAA, GLBA, FERPA, and others)
• Demonstrated ability to lead client relationships and provide strategic advice on privacy compliance, operational implementation, and risk mitigation
• Experience supporting incident response, breach notification, and regulatory investigations
• Familiarity with privacy due diligence and data-related concerns in M&A and commercial transactions
• Strong skills in drafting and negotiating data protection agreements, vendor and customer contracts, and privacy schedules
• A client-first mindset, strong judgment, and a collaborative, solutions-oriented approach
• A portable book of business is welcomed but not required

Benefits

• Medical, dental, and vision insurance
• Life and disability coverage
• Flexible spending accounts and commuter benefits
• Generous vacation and sick leave
• Paid holidays, parental leave, fertility benefits, and backup care support

**Who We Are**
Robert Half, one of FORTUNE's World's Most Admired Companies and a Fortune 100 Best Companies to Work For is hiring for a **Data Privacy Counsel** to join the Data Privacy RH department.
This individual will work with Protiviti and RH (the "Company") senior management and the Company Global Privacy Office in administering an organization-wide privacy compliance program. Serve as lead North America and South America privacy counsel for the Company responsible for creating, updating, and implementing the Company's privacy policies for North America and South America and coordinating such policies with the Company's global privacy program in collaboration with the Company Global Privacy Office, Information Security, Corporate Legal and other stakeholders.
**What You'll Do**
+ Monitor and understand existing and new privacy laws, regulations and other mandates related to the protection, use, collection, sharing and storage of data (including personal), including the impact of such laws, regulations, and mandates on the Company's businesses.Accountable for researching, knowing and interpreting data privacy laws (including employment privacy laws) in North America and South America. Partner with the Company Global Privacy Office and Corporate Legal Department to assess the impact of changes to laws and regulations in the North America and South America region and to oversee the implementation of legal and regulatory changes to the Company's processes.
+ Deliver high quality and timely data privacy related advice to internal stakeholders and offer pragmatic actionable guidance and solutions on the application, impact and implementation of applicable local privacy and data protection laws, working collaboratively across multiple teams and jurisdictions.
+ Investigate, identify issues, and make recommendations for resolutions in relation to issues of non-compliance with data privacy and local employment privacy laws and regulations in North America and South America.
+ Provide privacy advice, investigation, and remediation activities in relation to data subject rights, privacy related complaints, and communications with data protection authorities in North America and South America and provide support in relation to these matters in other jurisdictions.
+ Serve on global privacy committees and provide legal and strategic guidance on privacy activities and initiatives for the Company in North America and South America.
+ Counsel and assist with the development, review and resolution of privacy assessments and related ongoing compliance monitoring activities such as DPIAs/PIAs in North America and South America. Counsel and assist with the development and review of internal and external-facing privacy policies and program documents for the company in North America and South America.
+ Participate in the development, implementation, and ongoing compliance monitoring of the Company's third-party providers to ensure privacy concerns, requirements, and responsibilities are addressed.
+ Ensure that transfer of personal data in and out of the local jurisdiction is compliant with applicable data protection legislation. Counsel and assist with the development, review and resolution of privacy issues that come up during commercial negotiations, helping with security incident response, and advising leaders at the Company on the constantly evolving landscape of risks relating to privacy and data protection in North America and South America.
+ Advance privacy accountability across the organization through effective tools, training, and guidance.Assist and train Company legal colleagues with drafting and negotiating privacy/data protection/security language in the Company's client and vendor North America and South America agreements.
**What You'll Need**
+ Law degree (preferable with a specialization in Data Protection and/or Data Privacy qualifications) and an admitted lawyer.
+ Privacy or compliance accreditation. CIPP/CIPM or comparable privacy certification desirable.
+ 4+ years of experience as a practicing attorney, in-house and/or at a law firm, including at least 2 years of direct, hands-on experience providing legal counseling on data protection and privacy issues.
+ Experience and expertise with conducting privacy by design reviews
+ Knowledge of contract principles and requirements under applicable North America and South America laws in connection with privacy.
+ Experience of dealing with one or more of the North America and South America data protection authorities.
+ Limited travel required as needed.
+ Ability to work remotely, be self-organized and self-manage the workload and schedule.
+ Knowledge and experience with several North America and South America privacy regulations.
+ Ability to work under pressure and to effectively manage high volume of work.
+ Strong time management, prioritization, and organization skills.
+ Hardworking, flexible, team player.
+ Knowledge of a second language is desirable.
The typical annual salary range for this position is shown below and is negotiable depending upon experience and location. The position is eligible for a discretionary annual bonus.
$144,000.00 - $219,000.00
We offer exceptional earning potential and a competitive benefits package, including group health insurance benefits (medical, vision, dental), FSA and HSA healthcare accounts, life and accident insurance, adoption and fertility assistance, paid parental leave of up to 6 weeks, and short/long term disability. Robert Half provides paid time off for vacation, personal needs, and sick time. The amount of Choice Time Off (CTO) our people receive varies based on their years of service and is pro-rated based on the hours worked per week. A new hire earns up to 17 days of CTO per calendar year. Our people also receive up to 11 paid holidays per calendar year. We also offer the opportunity to contribute to our company 401(k) savings and investment plan or deferred compensation plan (if eligible), with an employer match of 100% on the first 3% of your contributions for eligible employees. Learn more at roberthalfbenefits.com/Resources .
Robert Half Inc. is an Equal Opportunity Employer. M/F/Disability/Veteran
As part of Robert Half's Corporate Services facility employment process, any offer of employment is contingent upon successful completion of a background check.
Robert Half is committed to being an equal employment employer offering opportunities to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to apply for a position, please contact us by sending an email to or call for assistance.
In your email please include the following:
+ The specific accommodation requested to complete the employment application.
+ The location(s) (city, state) to which you would like to apply.
For positions located in San Francisco, CA: Robert Half will consider qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.
For positions located in Los Angeles County, CA: Robert Half will consider for employment qualified applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Dir, Privacy Counsel
**Overall Job Summary**
This position is primarily responsible for providing legal counsel and strategic guidance on privacy and data protection matters, ensuring the company's compliance with applicable U.S. privacy laws and regulations (including CCPA, CPRA, HIPAA, etc.). Key duties include developing and implementing privacy policies and training, negotiating data privacy agreements and commercial contracting, and advising on privacy issues in commercial initiatives. The role will collaborate closely with cross-functional teams to integrate privacy best practices into business operations and will work with the privacy team in addressing complex privacy inquiries and compliance strategies.
**Essential Duties and Responsibilities (Min 5%)**
+ Provide expert legal counsel and day-to-day advice to the business on privacy and data protection compliance, ensuring adherence to U.S. federal and state privacy laws (e.g. CCPA, CPRA, HIPAA) and company policies.
+ Develop, implement, and maintain the company's privacy policies, procedures, and training programs in coordination with the Privacy team (Technology) to promote enterprise-wide compliance and awareness.
+ Draft, review, and negotiate data privacy and security provisions in commercial contracts, including Data Processing Agreements (DPAs) and third-party data sharing agreements, to protect the company's interests and ensure regulatory compliance.
+ Advise internal stakeholders (including IT, Digital, Marketing, HR, and Operations teams) on privacy issues related to new projects, initiatives, and technologies - helping to identify potential risks and recommend compliant solutions that align with business objectives.
+ Monitor and stay up-to-date on evolving privacy and data protection laws and regulations (domestic and international). Proactively communicate legislative or regulatory changes to relevant business partners and recommend necessary operational or policy adjustments.
+ Provide guidance to the Privacy team in managing day-to-day compliance tasks and complex privacy inquiries. Support team members in interpreting privacy requirements and implementing best practices.
+ Collaborate with management and other legal colleagues on overarching data protection strategy, governance initiatives, and privacy compliance projects to ensure a cohesive approach to privacy issues.
+ Coordinate and oversee responses to Data Subject Access Requests (DSARs) in partnership with the Privacy team.
+ Build and strengthen relationships with other individuals and groups within TSC to ensure that the Legal department is viewed as an effective and trusted business partner.
+ Help manage outside counsel or privacy consultants as needed for specialized advice, regulatory guidance, or to support investigations and compliance efforts in the privacy domain.
+ Support the Legal Department on other commercial or technology transactions and projects as requested, particularly those involving significant privacy or data security considerations.
**Required Qualifications**
_Experience:_ 7 to 10+ years of relevant legal experience in privacy and data protection law (gained in a law firm, in-house legal department, and/or regulatory agency). Must have hands-on experience advising on U.S. privacy laws such as CCPA, CPRA, and HIPAA. Experience drafting and negotiating commercial agreements containing data privacy terms (including Data Processing Agreements and third-party data sharing contracts) is required. Experience in the retail industry is strongly preferred. Exposure to international privacy frameworks or Canadian privacy law (e.g. PIPEDA) is a plus.
_Education:_ Juris Doctor (J.D.) from an accredited law school. Admission to practice law and current good standing status in the state of Tennessee, or admission to practice and good standing in another state with the ability to obtain Tennessee in-house counsel registration (per applicable rules). Any suitable combination of education and experience will be considered.
_Professional Certification_ : CIPP/US Privacy Certification or other similar certification a major plus.
**Preferred knowledge, skills or abilities**
+ Deep knowledge of U.S. privacy and data protection regulations, with the ability to interpret and apply laws in a business context.
+ Excellent contract drafting and negotiation skills, particularly related to data protection agreements and privacy clauses.
+ Strong analytical and problem-solving abilities to assess legal risks in complex scenarios and develop practical solutions.
+ Outstanding communication and presentation skills, including the ability to explain complex legal concepts in clear terms to non-legal stakeholders.
+ High level of professional integrity, discretion, and commitment to maintaining confidentiality and trust.
+ Demonstrated ability to work collaboratively across departments (e.g. IT, Security, Compliance, Marketing) and to lead cross-functional privacy initiatives.
+ Effective project management and organizational skills to handle multiple priorities and deadlines.
+ Proficiency in using standard business and legal software (e.g. Microsoft Office Suite); familiarity with privacy program management tools or technologies is a plus.
**Working Conditions**
+ Hybrid / Flexible working conditions
+ Occasional travel required
**Physical Requirements**
+ Sitting
+ Standing (not walking)
+ Walking
+ Lifting up to 10 pounds
**Disclaimer**
This job description represents an overview of the responsibilities for the above-mentioned position. It is not intended to represent a comprehensive list of responsibilities. A team member should perform all duties as assigned by his/ her supervisor.
**Company Info**
At Tractor Supply and Petsense by Tractor Supply, our Team Members are the heart of our success. Their dedication, passion, and hard work drive everything we do, and we are committed to supporting them with a comprehensive and accessible total reward package. We understand the evolving needs of our Team Members and their families, and we strive to offer meaningful, competitive, and sustainable benefits that support their well-being today and in the future.
Our benefits extend beyond medical, dental, and vision coverage, including company-paid life and disability insurance, paid parental leave, tuition reimbursement, and family planning resources such as adoption and surrogacy assistance, for eligible Team Members. While all Team Members have access to a broad range of rewards, eligibility and specific offerings may vary depending on the role, individual plan requirements and eligibility criteria.
**ALREADY A TEAM MEMBER?**
You must apply or refer a friend through our internal portal
Click here ( Mission and Values are more than just words on the wall - they're the one constant in an ever-changing environment and the bedrock on which we build our culture. They're the core of who we are and the foundation of every decision we make. It's not just what we do that sets us apart, but how we do it.
Learn More
**EMPOWERMENT**
We believe in managing your time for business and personal success, which is why we empower our Team Members to lead balanced lives through our benefits and total rewards offerings. For full-time and eligible part-time TSC and Petsense Team Members. We care about what you care about!
Learn More
**OPPORTUNITY**
A lot of care goes into providing legendary service at Tractor Supply Company, which is why our Team Members are our top priority. Want a career with a clear path for growth? Your Opportunity is Out Here at Tractor Supply and Petsense.
Learn More
Join Our Talent Community
**Nearest Major Market:** Nashville

As a key member of the Privacy Office in Regeneron's Law Department, this role will enable our rapidly growing and globally expanding business to develop and execute on innovative data-driven strategies in accordance with data privacy and related laws. The successful candidate will effectively partner with Law Department colleagues and other functions at Regeneron, provide expert and pragmatic counseling to senior leaders, and provide leadership and subject matter expertise to drive the continued improvement and implementation of Regeneron's data privacy program.
**_This role is based at our Sleepy Hollow, NY location (4 days a week) and is not open to hybrid or fully remote assignments._**
**A typical day might include:**
+ Providing advice and counseling on a wide range of privacy and related issues such as advising on sensitive data, digital advertising, and use of emerging technologies/AI.
+ Strategically assess potential privacy risks on new projects, including risk-mitigation counseling and advising on appropriate controls.
+ Monitoring emerging regulations and supporting the operationalization of compliance with evolving laws.
+ Upkeep and development of internal policies, procedures, and guidance documents; educating business clients through training and awareness programs; Improving and counseling on privacy program operations.
+ Working with Regeneron's Privacy Steward Council to drive initiatives that enhance data privacy across the organization.
+ Collaborating with our Government Affairs division on opportunities to influence legislation.
+ Assisting contracting teams in drafting, maintaining, and negotiating data processing agreements.
+ Participating in industry group meetings to stay updated on best practices and emerging trends.
**This role might be for you if you have:**
+ Strong knowledge of local and global privacy laws and their application to the pharmaceutical/biotechnology industry.
+ Deep understanding of privacy risks associated with ad tech and emerging technologies.
+ Excellent relationship building skills.
+ Demonstrated ability to work collaboratively and with all levels of the workforce.
+ Exceptional oral, written, and presentation communication skills, with the ability to effectively communicate and translate legal analysis to business counsel to a varied audience.
+ High level of business acumen, influencing skills and ability to drive change.
+ You are willing to take on a leadership role in an important, dynamic and challenging field.
**To be considered for this role, you must have a JD and be licensed to practice law in New York (or eligible for licensure as a registered in-house counsel). At least 7 years of legal experience at a law firm and/or in-house, and at least 3 years of experience in privacy. Ad Tech, Biotechnology, pharmaceutical or related life science experience is strongly preferred.**
Does this sound like you? Apply now to take your first step towards living the Regeneron Way! We have an inclusive and diverse culture that provides comprehensive benefits, which often include (depending on location) health and wellness programs, fitness centers, equity awards, annual bonuses, and paid time off for eligible employees at all levels!
Regeneron is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion or belief (or lack thereof), sex, nationality, national or ethnic origin, civil status, age, citizenship status, membership of the Traveler community, sexual orientation, disability, genetic information, familial status, marital or registered civil partnership status, pregnancy or parental status, gender identity, gender reassignment, military or veteran status, or any other protected characteristic in accordance with applicable laws and regulations. The Company will also provide reasonable accommodation to the known disabilities or chronic illnesses of an otherwise qualified applicant for employment, unless the accommodation would impose undue hardship on the operation of the Company's business.
For roles in which the hired candidate will be working in the U.S., the salary ranges provided are shown in accordance with U.S. law and apply to U.S.-based positions. For roles which will be based in Japan and/or Canada, the salary ranges are shown in accordance with the applicable local law and currency. If you are outside the U.S, Japan or Canada, please speak with your recruiter about salaries and benefits in your location.
Please note that certain background checks will form part of the recruitment process. Background checks will be conducted in accordance with the law of the country where the position is based, including the type of background checks conducted. The purpose of carrying out such checks is for Regeneron to verify certain information regarding a candidate prior to the commencement of employment such as identity, right to work, educational qualifications etc.
**Salary Range (annually)**
$202,000.00 - $336,600.00

Our client is looking for a highly experienced Lead Privacy Counsel to work remotely from anywhere in the US, with a primary hub in San Francisco, California, US . This senior legal position will be responsible for overseeing and managing all aspects of the company's global privacy program. You will provide expert legal advice on data privacy laws and regulations, including GDPR, CCPA, and other international privacy frameworks.

Key responsibilities include developing, implementing, and maintaining robust privacy policies, procedures, and best practices across the organization. You will conduct privacy risk assessments, manage data breach incidents, and oversee the legal aspects of data processing agreements and vendor management. This role involves significant collaboration with internal stakeholders, including engineering, product, marketing, and security teams, to ensure privacy-by-design principles are embedded in all products and services.

The ideal candidate will have extensive experience in privacy law, with a strong understanding of technology and its implications for data privacy. You will be responsible for staying abreast of evolving privacy legislation and providing proactive guidance to the business. This includes advising on new product launches, international data transfers, and marketing initiatives from a privacy perspective. You will also play a key role in training and awareness programs for employees on privacy compliance.

Qualifications include a Juris Doctor (JD) degree from an accredited law school and admission to at least one state bar. A minimum of 8-10 years of experience practicing privacy law, with a significant portion in-house at a technology company, is required. Demonstrated expertise in international privacy laws and compliance frameworks is essential. Excellent analytical, communication, and interpersonal skills are critical, as is the ability to work independently and manage complex projects in a remote setting. Experience with privacy compliance tools and technologies is a plus. This is a critical role for maintaining our client's commitment to data protection and trust.

Our client is seeking a highly experienced Senior Privacy Counsel to join their globally distributed legal team. This is a fully remote position, offering the opportunity to shape and safeguard the company's data privacy practices from anywhere. The ideal candidate will have a comprehensive understanding of global privacy regulations such as GDPR, CCPA, and others, coupled with extensive experience advising businesses on data protection strategies, compliance, and risk management. You will play a pivotal role in ensuring our client operates at the forefront of data privacy excellence.

Responsibilities:

• Develop, implement, and maintain robust global data privacy policies, procedures, and compliance programs.
• Provide expert legal advice and strategic guidance on a wide range of privacy matters, including data collection, processing, storage, transfer, and deletion.
• Conduct privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new products, services, and initiatives.
• Advise on cross-border data transfer mechanisms and ensure compliance with international privacy laws.
• Respond to data subject access requests (DSARs) and manage regulatory inquiries and investigations related to data privacy.
• Collaborate with product, engineering, marketing, and other business units to embed privacy-by-design principles into all aspects of the business.
• Stay current with evolving privacy laws, regulations, and enforcement trends worldwide, and proactively advise the company on potential impacts and required adjustments.
• Develop and deliver privacy training programs to employees at all levels of the organization.
• Manage and mitigate privacy-related risks, including data breaches, by working closely with incident response teams.
• Review and advise on third-party vendor agreements to ensure data protection compliance.

Qualifications:

• Juris Doctor (J.D.) degree from an accredited law school and admission to the bar in at least one U.S. jurisdiction (active and in good standing).
• Minimum of 8 years of legal experience with a significant focus on data privacy, data protection, and cybersecurity law.
• Deep understanding of global privacy frameworks including GDPR, CCPA/CPRA, HIPAA, and other relevant regulations.
• Experience in advising on privacy-related aspects of technology development, data analytics, and digital marketing.
• Strong analytical, strategic thinking, and problem-solving skills.
• Excellent written and verbal communication abilities, with the capacity to explain complex legal concepts to non-legal audiences.
• Proven ability to manage complex projects, prioritize effectively, and work independently in a remote setting.
• Experience with privacy certifications (e.g., CIPP/US, CIPP/E) is highly desirable.
• Ability to collaborate effectively with cross-functional teams across different time zones and geographies.
• Commitment to ethical conduct and maintaining confidentiality.

This role is fully remote and the candidate can be based anywhere within the US. While the headquarters are in Detroit, Michigan, US , this role is not tied to a physical office.

Our client, a dynamic and rapidly growing technology company, is seeking a highly experienced Senior Privacy Counsel to join their legal team. This is a fully remote position, offering significant flexibility. You will be responsible for advising the company on a broad range of data privacy and security matters, ensuring compliance with global privacy regulations such as GDPR, CCPA, and others. This role requires a deep understanding of privacy laws, risk assessment, data governance, and the ability to translate complex legal requirements into practical business solutions. You will work closely with product, engineering, marketing, and compliance teams to embed privacy considerations into all aspects of the business.

Key responsibilities include:

• Providing expert legal advice on data privacy and data protection laws and regulations worldwide.
• Developing, implementing, and managing the company's global privacy program.
• Conducting Data Protection Impact Assessments (DPIAs) and Privacy Impact Assessments (PIAs).
• Drafting and reviewing privacy policies, terms of service, data processing agreements, and other privacy-related documents.
• Advising on data breach incident response planning and execution.
• Collaborating with the security team to ensure alignment between privacy and cybersecurity efforts.
• Training employees on privacy best practices and compliance requirements.
• Monitoring changes in privacy laws and regulations and updating company policies and procedures accordingly.
• Assisting with regulatory inquiries and investigations.
• Counseling business units on privacy implications of new products, services, and marketing initiatives.

The ideal candidate will be a licensed attorney in good standing, with a Juris Doctor (J.D.) degree from an accredited law school. A minimum of 8 years of experience focused on data privacy and cybersecurity law, either in-house or at a reputable law firm, is required. Extensive knowledge of major privacy regulations (GDPR, CCPA, etc.) and their practical application is essential. Experience with privacy-enhancing technologies and data governance frameworks is highly desirable. Excellent analytical, communication, and interpersonal skills are critical for success in this role. The ability to work independently and manage multiple priorities in a fast-paced, remote environment is a must. This is an exceptional opportunity to play a pivotal role in shaping the privacy posture of a leading technology company, working remotely with connections to our operations in Austin, Texas, US .

**The position is described below. If you want to apply, click the Apply button at the top or bottom of this page. You'll be required to create an account or sign in to an existing one.**
_If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to_ Accessibility ( ?subject=Accommodation%20request) _(accommodation requests only; other inquiries won't receive a response)._
**Regular or Temporary:**
Regular
**Language Fluency:** English (Required)
**Work Shift:**
1st Shift (United States of America)
**Please review the following job description:**
The In-House Privacy Counsel will lead all aspects of data privacy and protection across the organization. This role will be responsible for providing strategic direction for the company's privacy compliance program, including policy development, risk assessment, incident response, and training. The successful candidate will bring deep expertise in privacy law and cybersecurity regulations, and will collaborate closely with cross-functional teams to ensure compliance and mitigate risk.
**KEY RESPONSIBILITIES**
Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.
+ Provide strategic legal counsel on data privacy and protection matters across the organization.
+ Lead and scale the company's privacy compliance program, ensuring alignment with business objectives and regulatory requirements.
+ Develop and implement comprehensive data privacy and security policies and procedures.
+ Oversee the protection of data collected by the company and ensure compliance with applicable laws and regulations.
+ Draft, review, and negotiate privacy and security contractual clauses and data protection agreements.
+ Monitor and assess changes in privacy laws and regulations, including CCPA, GLBA, GDPR, HIPAA, NYDFS, and others.
+ Conduct privacy risk assessments and manage incident response for data breaches and cybersecurity events.
+ Deliver ongoing training and education to employees on data privacy and security best practices.
+ Collaborate with cybersecurity, IT, HR, and other cross-functional teams to ensure cohesive privacy strategies.
+ Support privacy-related aspects of M&A activity, including due diligence and integration planning.
+ Maintain strong relationships with internal stakeholders and external counsel to manage privacy-related legal matters.
**EDUCATION AND EXPERIENCE**
The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
+ Juris Doctor (JD) from an ABA-accredited law school (Required)
+ Licensed to practice law in any U.S. state (Required)
+ 7+ years of sophisticated data privacy and security experience, preferably with an Am Law 200 or boutique law firm and/or in-house legal department
+ Experience assessing data privacy compliance and developing comprehensive data privacy and security policies
+ Experience addressing data breach or incidents and providing strategic advice and training on data security issues
+ Insurance industry, CFIUS, and/or sanctions experience a plus
**CERTIFICATIONS, LICENSES, REGISTRATIONS**
+ Active law license in good standing (Required)
**FUNCTIONAL SKILLS**
+ Strong legal research and analytical skills
+ Outstanding written and verbal communication skills
+ Ability to build trusted partnerships with cross-functional teams including cybersecurity, IT, and HR
+ Proven ability to manage multiple priorities in a fast-paced environment
+ High level of discretion and professionalism
+ Ability to work independently and collaboratively across teams
+ Strategic mindset with a practical, solution-oriented approach
+ Experience managing outside counsel and privacy-related legal matters
+ Familiarity with privacy training and policy development
**General Description of Available Benefits for Eligible Employees of CRC Group:** At CRC Group, we're committed to supporting every aspect of teammates' well-being - physical, emotional, financial, social, and professional. Our best-in-class benefits program is designed to care for the whole you, offering a wide range of coverage and support. Eligible full-time teammates enjoy access to medical, dental, vision, life, disability, and AD&D insurance; tax-advantaged savings accounts; and a 401(k) plan with company match. CRC Group also offers generous paid time off programs, including company holidays, vacation and sick days, new parent leave, and more. Eligible positions may also qualify for restricted stock units and/or a deferred compensation plan.
**_CRC Group supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. CRC Group is a Drug Free Workplace._**
EEO is the Law ( Pay Transparency Nondiscrimination Provision E-Verify ( CRC Group, a leader in specialty wholesale insurance, and take your career to new heights. We're a dynamic team dedicated to innovation, collaboration, and excellence.
Why CRC Group?
- Growth: Advance your career with our learning and leadership development programs.
- Innovation: Work in a forward-thinking environment that values new ideas.
- Community: Be part of a supportive team that celebrates success together.
- Benefits: Enjoy competitive compensation, health benefits, and retirement plans.
Who We're Looking For
We seek passionate individuals who thrive in a fast-paced, collaborative environment. If you value integrity and are driven to succeed, CRC Group is the place for you.