1,032 Senior Privacy Counsel jobs in the United States

**Calling all innovators - find your future at Fiserv.**
We're Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants and consumers to one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we're involved. If you want to make an impact on a global scale, come make a difference at Fiserv.
**Job Title**
Privacy Counsel
**What does a successful Privacy Counsel do?** **A successful Privacy Counsel at Fiserv plays a crucial role in ensuring compliance with data privacy regulations and providing critical legal advice. This role focuses on monitoring compliance with data privacy rules and regulations and will include providing legal advice to business partners in the area of data privacy, facilitating compliance, working transactionally with contracts, utilizing and developing data analytics, developing and enforcing established policies and working closely with internal stakeholders in various corporate functions to analyze and respond to privacy-related issues and questions.**
**What you will do:**
+ Serve as a legal subject matter expert, advising on corporate practices across all legal and regulatory aspects.
+ Support the growth of new business opportunities by analyzing privacy implications of new data-driven products and services, conducting risk assessments as needed.
+ Monitor changes in applicable privacy laws and prepare updates, communicating with internal clients to keep them abreast of developments.
+ Respond to inquiries across the company, providing actionable legal counsel regarding privacy-related matters.
+ Advise on the business impact of GLBA, HIPAA, CCPA, GDPR, and other global privacy laws and regulations.
+ Draft, develop, implement, and maintain privacy policies, procedures, notices, and guidelines.
+ Negotiate related provisions of commercial and technology contracts, including data usage and license agreements, vendor/service provider agreements, customer agreements, and data protection agreements.
+ Lead and strategically guide cross-functional teams including Operations, Marketing, Procurement, IT, and HR.
+ Develop guidelines, training, and tools to support accountability and compliance across the organization.
+ Craft and report data analytics related to privacy.
**What you will need to have:**
+ Juris Doctor or LLM from an accredited law school, in good standing with the State Bar with no disciplinary record.
+ 8+ years of experience in corporate law with at least 4 years in a global corporate legal department.
+ Experience in privacy and data security law.
+ Experience drafting and negotiating commercial contracts with a focus on privacy and data protection.
+ Experience analyzing and interpreting privacy laws and regulations, including GLBA, HIPAA, CCPA, GDPR, and others.
**What would be great to have:**
+ Certified Information Privacy Professional (CIPP) certification.
+ Experience with technology, digital media, and FinTech.
+ Experience with product development.
+ Experience developing and delivering privacy training programs.
+ Expertise in developing privacy compliance tools and resources.
**Important information about this role:**
+ This role is on-site Monday through Friday. Fiserv considers in-person collaboration to be an essential part of this role as in-person office experiences help you with your overall onboarding experience and leads to stronger productivity.
+ This is a full-time, direct-hire position, and no contract options for unsolicited agency submissions will be considered.
**Perks at Work:**
+ We're #FiservProud of our commitment to your overall well-being with a growing offering of physical, mental, emotional, and financial benefits from day one.
+ Maintain a healthy work-life balance with paid holidays, generous time off policies, including Recharge & Refuel time for qualifying associates, and free counseling through our EAP.
+ Plan for your future with competitive salaries, the Fiserv 401(k) Savings Plan, and our Employee Stock Purchase Plan.
+ Recognize and be recognized by colleagues with our Living Proof program where you can exchange points for a variety of rewards.
+ Prioritize your health with a variety of medical, dental, vision, life and disability insurance options and a range of well-being resources through our Fuel Your Life program.
+ Advance your career with training, development, certification, and internal mobility opportunities.
+ Join Employee Resource Groups that promote our diverse and inclusive culture where associates can share perspectives, exchange ideas, and elevate careers.
#LI-DI, #LI-Onsite
**Salary Range**
$155,300.00 - $261,500.00
_These pay ranges apply to employees in New Jersey, New York and California. Pay ranges for employees in other states may differ._
It is unlawful to discriminate against a prospective employee due to the individual's status as a veteran.
For incentive eligible associates, the successful candidate is eligible for an annual incentive opportunity which may be delivered as a mix of cash bonus and equity awards in the Company's sole discretion.
Thank you for considering employment with Fiserv. Please:
+ Apply using your legal name
+ Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).
**Our commitment to Equal Opportunity:**
Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law.
If you have a disability and require a reasonable accommodation in completing a job application or otherwise participating in the overall hiring process, please contact . Please note our AskHR representatives do not have visibility to your application status. Current associates who require a workplace accommodation should refer to Fiserv's Disability Accommodation Policy for additional information.
**Note to agencies:**
Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions.
**Warning about fake job posts:**
Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.

About NCR VOYIX
NCR VOYIX Corporation (NYSE: VYX) is a leading global provider of digital commerce solutions for the retail, restaurant and banking industries. NCR VOYIX is headquartered in Atlanta, Georgia, with approximately 16,000 employees in 35 countries across the globe. For nearly 140 years, we have been the global leader in consumer transaction technologies, turning everyday consumer interactions into meaningful moments. Today, NCR VOYIX transforms the stores, restaurants and digital banking experiences with cloud-based, platform-led SaaS and services capabilities.
Not only are we the leader in the market segments we serve and the technology we deliver, but we create exceptional consumer experiences in partnership with the world's leading retailers, restaurants and financial institutions. We leverage our expertise, R&D capabilities and unique platform to help navigate, simplify and run our customers' technology systems.
Our customers are at the center of everything we do. Our mission is to enable stores, restaurants and financial institutions to exceed their goals - from customer satisfaction to revenue growth, to operational excellence, to reduced costs and profit growth. Our solutions empower our customers to succeed in today's competitive landscape.
Our unique perspective brings innovative, industry-leading tech to all the moving parts of business across industries. NCR VOYIX has earned the trust of businesses large and small - from the best-known brands around the world to your local favorite around the corner.
The Senior Privacy Counsel is a trusted privacy legal advisor and data protection expert for NCR Voyix. You will work among a dynamic and collegial team of attorneys, contract managers and compliance professionals. This role reports to the Chief Privacy Officer. The Senior Privacy Counsel maintains a deep understanding of the complex and evolving global privacy regulatory landscape. As a critical part of NCR Voyix's privacy program, you will offer thought leadership, advice and guidance on privacy practices such as complying with privacy laws and regulations, designing solutions with privacy in mind, minimizing the collection of data, providing meaningful notice and choice, and safeguarding information. This is a hands-on, fast-paced position ideally suited for an entrepreneurial, business-minded attorney with a desire to enhance and operate a world-class privacy program.
KEY AREAS OF RESPONSIBILITY
+ Providing practical and business-focused legal advice on privacy and data protection requirements globally (including US Federal and State laws, GDPR, CCPA, and LGPD).
+ Exercising risk-based judgment on privacy concerns related to product and services offerings, including conducting privacy impact assessments and providing guidance on privacy by design.
+ Drafting and negotiating agreements containing privacy and security clauses with customers, suppliers, and partners.
+ Developing and delivering training on subjects related to data privacy and data protection.
+ Leading privacy due diligence in evaluating potential acquisitions and support the integration of acquired businesses into privacy program.
+ Collaborating with others to prepare, update and enforce policies and procedures related to data privacy and data protection.
+ Supporting the NCR Voyix incident response process for events involving regulated personal data.
+ Providing proactive guidance and support on various new compliance requirements.
BASIC REQUIREMENTS & EXPERIENCE
+ Law degree from a reputable law school.
+ Minimum 8 years of legal experience with an in-house legal team and/or large law firm (a history of both environments is preferred).
+ Certification from the International Association of Privacy Professionals, preferred.
+ Expertise in the areas of data protection and privacy law (US and international data privacy laws).
+ Experience conducting/advising on privacy impact assessments, building and maintaining records of processing, and knowledge of privacy by design principles.
+ Degree or experience working with technology and software preferred.
+ Excellent judgment, communication skills and attention to detail, with ability to negotiate at executive levels.
+ Able to exercise risk-based judgment and propose solutions to complex problems.
+ Flexible to work under short deadlines and outside normal working hours with minimal advance notice.
Offers of employment are conditional upon passage of screening criteria applicable to the job
EEO Statement
Integrated into our shared values is NCR Voyix's commitment to diversity and equal employment opportunity. All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. NCR Voyix is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. Every individual at NCR Voyix has an ongoing responsibility to respect and support a globally diverse environment.
Statement to Third Party Agencies To ALL recruitment agencies: NCR Voyix only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Voyix employees, or any NCR Voyix facility. NCR Voyix is not responsible for any fees or charges associated with unsolicited resumes
"When applying for a job, please make sure to only open emails that you will receive during your application process that come from a @ncrvoyix.com email domain."
Help us run the world's top brands.
At NCR Voyix ( , we specialize in turning routine transactions into meaningful connections. With a rich history ( of innovation, we've been at the forefront of problem-solving through technology. Operating globally in over 30 countries, we lead in Retail, Restaurant, Digital banking, and Payments. Our solutions optimize banking operations, streamline restaurant services, enhance retail interactions, and foster trust through secure payment systems.
We take pride in our strong culture ( and a history of providing robust career paths. Come work for a leading technology company where you can grow your career. Join us and be part of revolutionizing transactions across these pivotal industries.

Senior Privacy Counsel
**Cupertino, California, United States**
**Corporate Functions**
**Summary**
Posted: **Jun 19, 2025**
Weekly Hours: **40**
Role Number: **200590943**
Imagine what you could do here. At Apple, new ideas have a way of becoming great products, services, and customer experiences very quickly. Bring passion and dedication to your job and there's no telling what you could accomplish.
Do you love taking on big challenges without precedent? Do you possess a deep knowledge of the legal field and a passion for innovation? As a part of our Legal group, you'll help uphold Apple's high ethical and corporate standards by providing legal support for all our products and businesses across the globe. Working for a company that invents entire categories and industries means you'll be challenged to creatively apply your deep legal expertise to rare and often unexplored aspects of the law.
As Senior Privacy Counsel you will have the opportunity to work with a dynamic and experienced team on privacy issues impacting Apple's business and products globally. You will help ensure that Apple continues to lead the industry on privacy and ensures we respond to the changing legal landscape under the GDPR, CCPA, etc.
**Description**
You will be responsible for advising and providing support on privacy related aspects for Apple's internal operations and various products and services, working alongside legal, engineering and business teams. This role will report through the Privacy Compliance Legal team and will offer the opportunity to work directly with key members of the business, engineering and legal teams on a variety of cutting edge projects including:
- Partnering with business teams to advise on privacy matters and conduct privacy reviews, including privacy impact assessments
- Providing guidance on matters relating to internal processing and employee privacy
- Drafting policies and procedures to ensure that technology and business processes meet existing and new privacy legal requirements
- Advising litigation and regulatory partners on applicable privacy requirements
- Supporting compliance and auditing teams and frameworks including in relation to the GDPR, the CCPA, and other privacy laws
- Staying informed of and properly communicating any changes to or developments in privacy laws, regulations, standards, and guidance
**Minimum Qualifications**
+ 8+ years of experience (either at a major law firm and/or in-house) in privacy law
+ Knowledge of comprehensive privacy laws, and regulatory and other guidance and standards
+ Experience advising on regulatory compliance and inquiries
+ JD or equivalent and admission to at least one US state bar
**Preferred Qualifications**
+ Able to clearly organize and inform through excellent written and verbal communications
+ Ability to lead, take action, and provide direction in the face of ambiguity
+ Experience quickly issue-spotting, analyzing, and clearly communicating privacy advice on complex legal issues
+ Ability to get results in diverse, fast paced environments
+ Able to multi-task across diverse business units and geographical boundaries
+ Strong analytical capability with attention to detail
+ Ability to partner at all levels of the organization
**Pay & Benefits**
At Apple, base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay range for this role is between $230,500 and $346,500, and your base pay will depend on your skills, qualifications, experience, and location.
Apple employees also have the opportunity to become an Apple shareholder through participation in Apple's discretionary employee stock programs. Apple employees are eligible for discretionary restricted stock unit awards, and can purchase Apple stock at a discount if voluntarily participating in Apple's Employee Stock Purchase Plan. You'll also receive benefits including: Comprehensive medical and dental coverage, retirement benefits, a range of discounted products and free services, and for formal education related to advancing your career at Apple, reimbursement for certain educational expenses - including tuition. Additionally, this role might be eligible for discretionary bonuses or commission payments as well as relocation.Learn more about Apple Benefits. ( Apple benefit, compensation and employee stock programs are subject to eligibility requirements and other terms of the applicable plan or program.
Apple is an equal opportunity employer that is committed to inclusion and diversity. We seek to promote equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics.Learn more about your EEO rights as an applicant ( .
Apple is an equal opportunity employer that is committed to inclusion and diversity. We seek to promote equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics.Learn more about your EEO rights as an applicant ( .
Apple will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation.
Apple participates in the E-Verify program in certain locations as required by law.Learn more about the E-Verify program ( .
Apple is committed to working with and providing reasonable accommodation to applicants with physical and mental disabilities. Reasonable Accommodation and Drug Free Workplace policy Learn more .
Apple is a drug-free workplace. Reasonable Accommodation and Drug Free Workplace policy Learn more .
Apple will consider for employment all qualified applicants with criminal histories in a manner consistent with applicable law. If you're applying for a position in San Francisco, review the San Francisco Fair Chance Ordinance guidelines applicable in your area.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Provide legal review and guidance on initiatives impacting privacy, data protection and security. Partner cross-functionally to inform, influence and advise on data uses and privacy strategies while managing legal risk and ensuring regulatory compliance. Provide privacy and data security subject matter expertise to our other attorneys as they negotiate commercial deals involving use of personal information. Demonstrate the company's core values of respect, honesty, integrity, diversity, inclusion and safety.Minimum
- Other Law Degree from accredited U.S. law school and admission to state bar; Juris Doctor and active membership in at least one state bar
- 2+ years of experience providing pragmatic and actionable advice to clients on various legal risks and obligations under privacy and data security laws in the U.S. or Europe (including GDPR)
- 5+ years combined experience in law firms, governmental agencies, and/or in-house legal departments
- Experience developing and implementing external privacy notices
- Ability to build and manage a network of key stakeholder relationships
- Experience advising on privacy and data security in commercial transactions a plus
- Strong ethical compass and problem-solving skills
- Strong analytical, strategic thinking, and communication skills with demonstrated legal and business judgment
- Ability to work with large multi-stakeholder teams
- Ability to work with IT professionals and knowledge of basic IT terms and concepts
- Ability to translate legal advice into actionable guidance for product, engineering, security, and business teams
- Prior experience having advised on policies and procedures on data use, security, and privacy

Desired
- Bachelor's Degree IT, Data Analytics or Cybersecurity- Ensure that the company complies with all applicable laws, rules and regulations related to privacy and data security
- Provide expertise and guidance to legal colleagues (including product, employment and commercial counsel), Corporate Information Security, Procurement/Sourcing, product development and engineering teams
- Identify and communicate the requirements of existing and new laws and/or regulations applicable to Kroger and any changes on a timely and ongoing basis
- Draft responses to privacy and security related customer, associate, and regulatory inquiries and investigations.
- Draft external privacy notices and disclosures, and manage/update internal policies and procedures to ensure compliance with laws regarding privacy and cybersecurity
- Assist with enhancing, scaling and running the existing privacy program, including privacy operations and documentation; employee training; policy enforcement, monitoring and auditing; and incident response
- Work with the Data Sharing Governance, Compliance, CIS and others to scope and perform data privacy risk assessments, contract reviews, mitigation and remediation, including data control design and monitoring, as well as the mitigation of privacy and security risks
- Remain up-to-date on relevant consumer protection, privacy and data security laws and regulations, as well as on technological developments, threat vectors, and evolving industry standards
- Interact with others in a professional, tactful and sensitive manner
- Must be able to perform the essential job functions of this position with or without reasonable accommodation

Provide legal review, guidance and support on privacy, data protection and security matters across The Kroger Co. and its affiliated companies. Partner cross-functionally with the business, including IT, sourcing, product development, engineering, information security, and our other Company attorneys to inform, influence and advise on data uses and privacy strategies while managing legal risk and ensuring regulatory compliance involving use of personal information. Must have a strong foundation in drafting and negotiating complex contracts and in-depth knowledge and expertise on data privacy and security laws. Provide legal review, guidance and support on privacy, data protection and security matters across The Kroger Co. and its affiliated companies. Partner cross-functionally with the business, including IT, sourcing, product development, engineering, information security, and our other Company attorneys to inform, influence and advise on data uses and privacy strategies while managing legal risk and ensuring regulatory compliance involving use of personal information. Must have a strong foundation in drafting and negotiating complex contracts and in-depth knowledge and expertise on data privacy and security laws. Demonstrate the company's core values of respect, honesty, integrity, diversity, inclusion, and safety.MINIMUM

• 7+ years combined experience in law firms, governmental agencies, and/or in-house legal departments
• 4+ years of experience providing pragmatic and actionable advice to clients on various legal risks and obligations under privacy and data security laws in the U.S.
• Juris Doctor from accredited U.S. law school
• Admission to at least one state bar
• Exceptional contract drafting and written communication skills
• Extensive experience drafting and negotiating data privacy and security terms and agreements, with retail media and advertising experience strongly preferred
• Experience drafting and negotiating complex technology, license, data sharing, ad tech, and other agreements with privacy-implications
• Expert knowledge and understanding of data privacy and security laws, regulations and industry best practices, with expertise on how those laws apply in the digital media and advertising space strongly preferred
• Ability to translate legal advice into actionable guidance for product, engineering, security, and business teams
• Ability to work with IT professionals and knowledge of basic IT terms and concepts
• Strong analytical, strategic thinking, and communication skills with demonstrated legal and business judgment
• Strong ethical compass and problem-solving skills
• Demonstrate the company's core values of respect, honesty, integrity, diversity, inclusion and safety.
• Ability to build and manage a network of key stakeholder relationships

DESIRED

• Bachelor's Degree in IT, Data Analytics or Cybersecurity
• Previous work experience in ad tech/marketing

• Draft, review and negotiate data protection addendums and other data-related agreements for wide-ranging business initiatives, including with vendors, clients, and business partners
• Negotiate a wide range of complex commercial transactions involving consumer data, including technology, marketing, and license agreements
• Provide pragmatic privacy and data security subject matter expertise, guidance and advise on compliance with all applicable laws, rules and regulations
• Partner with our Privacy Office to support, enhance, scale and run Kroger's existing privacy program, including privacy operations and documentation; employee training; policy enforcement, and monitoring and auditing
• Collaborate with compliance, information security and other stakeholders to perform privacy assessments
• Proactively monitor and remain up to date on relevant consumer protection, privacy and data security laws and regulations, enforcement actions, technological developments, threat vectors, industry and regulatory trends and topics, and evolving industry standards and best practices
• Work with privacy legal team members to maintain, update, and draft contract templates and playbooks
• Provide legal support for security incident response activities
• Must be able to perform the essential job functions of this position with or without reasonable accommodation

**Description**
At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career.
Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.
We have an exciting opportunity for a Manager & Counsel within the General Counsel's Organization (GCO) at American Express. The Manager & Counsel will report to the Vice President & Senior Counsel, U.S. Products & Services and will be a member of the Privacy & Data Law Group (PDLG).
The Manager & Counsel is responsible for providing practical, timely, strategic, and high-quality legal advice on U.S. privacy and data matters across the organization on a broad range of matters. You will work directly with business teams, compliance, and operational teams to provide day-to-day advice, serving as the primary lawyer on a variety of strategic initiatives, including new product launches, regulatory change management projects, and novel uses of data.
**Examples of what you will do in this role:**
+ Advise B2C and B2B businesses with day-to-day data protection and privacy queries across the U.S. region, including across nascent and developing areas.
+ Provide guidance for new product launches, strategic initiatives, and practical risk mitigation strategies.
+ Draft and negotiate commercial agreements relating to data protection and privacy, including co-brand and business partner agreements and data processing agreements.
+ Oversee the development and maintenance of data privacy related policies and guidance, including reviewing and drafting privacy notices and disclosures.
+ Draft and uplift data protection and privacy templates and guidance documents/playbooks.
+ Provide legal support for regulatory change management projects
+ Support data privacy training and awareness across the organization.
**Required skills:**
+ Qualified to practice law in the U.S.
+ Minimum of 4 years of relevant data protection and privacy experience at a law firm, in-house, and/or government agency.
+ Excellent knowledge of U.S. privacy laws (and adjacent laws), including GLBA, CCPA, COPPA, CAN-SPAM, TCPA and FCRA.
+ Strong drafting, analytical, and negotiation skills and the ability to provide clear, precise, and pragmatic advice.
+ A team player with great stakeholder management skills who can effectively collaborate and build relationships with lawyers and business clients throughout the organization.
+ Ability to work with a high degree of autotomy and re-prioritize workload as new projects and matters arise.
+ Excellent communication skills, both verbal and written.
+ Strong commercial acumen and solutions-oriented mindset.
+ Willingness and flexibility to take on new responsibilities as American Express and its businesses continue to evolve.
**Preferred skills/qualifications:**
+ Prior tech, fintech and/or financial services experience.
+ Experience with managing data protection and privacy issues for multinational companies.
+ Familiarity with business and products across the banking/financial services industry and relevant legal issues affecting them.
+ CIPP/US certification.
**Qualifications**
Salary Range: $110,000.00 to $190,000.00 annually bonus benefits
The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we'll consider your location, experience, and other job-related factors.
We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:
+ Competitive base salaries
+ Bonus incentives
+ 6% Company Match on retirement savings plan
+ Free financial coaching and financial well-being support
+ Comprehensive medical, dental, vision, life insurance, and disability benefits
+ Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
+ 20 weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
+ Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
+ Free and confidential counseling support through our Healthy Minds program
+ Career development and training opportunities
For a full list of Team Amex benefits, visit our Colleague Benefits Site .
American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law. American Express will consider for employment all qualified applicants, including those with arrest or conviction records, in accordance with the requirements of applicable state and local laws, including, but not limited to, the California Fair Chance Act, the Los Angeles County Fair Chance Ordinance for Employers, and the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance. For positions covered by federal and/or state banking regulations, American Express will comply with such regulations as it relates to the consideration of applicants with criminal convictions.
We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.
US Job Seekers - Click to view the " Know Your Rights " poster. If the link does not work, you may access the poster by copying and pasting the following URL in a new browser window: eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.
**Job:** Legal
**Primary Location:** US-New York-New York
**Schedule** Full-time
**Req ID:** 25011274

Job Details

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We're looking for people who are determined to make life better for people around the world.

Senior Director, Digital Legal Office - Health and Wellness Privacy Counsel

Purpose:

The successful candidate will be an experienced and strategic attorney with impeccable judgement who will provide legal and regulatory guidance on privacy issues related to health and wellness data collection and processing, including particular focus on Health Insurance Portability and Accountability Act (HIPAA) compliance, digital health privacy, and related healthcare data protection laws and pharmacy operations. The individual must be motivated by working in a dynamic environment with broad responsibility, as this position will effectively partner with a wide range of collaborators across the company. You will have direct, front-line responsibility providing strategic counsel to various functions, including ethics and compliance, information technology, cybersecurity, and privacy, artificial intelligence, data governance and will liaise with specialty legal colleagues to counsel and strategize on these issues. This attorney will also collaborate with the government affairs team in influencing legislation and industry standards related to relevant information privacy. The position reports to the Associate Vice President, Assistant General Counsel, Digital Legal Office Global Legal Lead (Privacy).

Responsibilities:

• Serve as the primary legal advisor on HIPAA Privacy and Security Rules, HITECH, and related healthcare data protection laws.
• Provide legal counsel on the design and implementation of digital health technologies, Pharmacy Management Systems, EHR platforms, health plans, onsite employee health clinics and related primacy care services, mobile health applications and other healthcare IT solutions.
• Advise on legal risks and mitigation strategies related to pharmacy intake and dispensing operations, including patient data intake, prescription processing, and digital consent.
• Draft, review, and negotiate contracts involving protected health information (PHI), including Business Associate Agreements (BAAs), data sharing agreements, and vendor contracts.
• Collaborate with IT, Compliance, and Product teams to ensure privacy-by-design principles are embedded in all digital solutions.
• Monitor and interpret evolving federal and state privacy laws (e.g., CCPA, CPRA, state-specific pharmacy laws) and advise on their impact.
• Support incident response and breach notification processes in accordance with HIPAA and state breach laws.
• Provide training and education to internal team members on HIPAA, digital privacy, and pharmacy compliance.
• Draft and review, and otherwise support negotiations regarding privacy provisions in a wide variety of agreements
• Oversee legal response to data breaches or privacy/security incidents including investigations, notifications, and remediation
• Support audits, regulatory inquiries, and enforcement actions

Basic Qualifications

• J.D. degree from accredited schools.
• Active license to practice law in the United States.
• Minimum of 7 years of legal experience, with a focus on healthcare law.
• Extensive experience and in-depth knowledge of the Health Insurance Portability and Accountability Act (HIPAA) and its regulations with consistent record of providing legal support to pharmacies, Covered Entities, and Business Associates.

Additional Skills/Preferences

• Demonstrated experience standing up, supporting, and maintaining complex health and wellness privacy programs for regulated entities
• Working knowledge and understanding of various privacy regulations, frameworks, and accompanying guidance
• Experience successfully and strategically handling privacy risks, threats, and breaches
• Ability to research, track, and turn regulations and enforcement trends into practical, actionable advice
• Demonstrated collaboration skills with corporate business partners and/or clients, including the ability to work closely with information technology and security teammates and a clear understanding of roles and responsibilities
• Basic knowledge of and understanding of privacy regulators, including the FTC, states attorneys general, and HHS
• Familiarity with AI/ML in healthcare, interoperability standards, and health information exchanges
• Highly motivated and collaborative partner with strong interpersonal skills and the ability to work effectively with team members and members of management across all levels of the company
• Good judgement and a meticulous level of attention to detail
• Excellent written and verbal communication skills with a demonstrated ability to influence others
• Demonstrated commitment to expand knowledge and adapt to the changing environment
• Comfortable operating with a sense of urgency and ability to manage competing priorities in a fast-paced and evolving environment
• Experience counseling on emerging regulations and best practices in data governance, artificial intelligence, privacy, and cyber security
• Experience counseling technology teams
• Preferred Location: Indianapolis based. Open to remote with willingness to travel to Indianapolis on a quarterly basis or more often as required to meet relevant business needs

Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.

Lilly is proud to be an EEO Employer and does not discriminate on the basis of age, race, color, religion, gender identity, sex, gender expression, sexual orientation, genetic information, ancestry, national origin, protected veteran status, disability, or any other legally protected status.

Our employee resource groups (ERGs) offer strong support networks for their members and are open to all employees. Our current groups include: Africa, Middle East, Central Asia Network, Black Employees at Lilly, Chinese Culture Network, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinx at Lilly (OLA), PRIDE (LGBTQ+ Allies), Veterans Leadership Network (VLN), Women's Initiative for Leading at Lilly (WILL), enAble (for people with disabilities). Learn more about all of our groups.

Actual compensation will depend on a candidate's education, experience, skills, and geographic location. The anticipated wage for this position is
$177,000 - $259,600

Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly's compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees.

#WeAreLilly

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We're looking for people who are determined to make life better for people around the world.
**Senior Director, Digital Legal Office - Health and Wellness Privacy Counsel**
**Purpose:**
The successful candidate will be an experienced and strategic attorney with impeccable judgement who will provide legal and regulatory guidance on privacy issues related to health and wellness data collection and processing, including particular focus on Health Insurance Portability and Accountability Act (HIPAA) compliance, digital health privacy, and related healthcare data protection laws and pharmacy operations. The individual must be motivated by working in a dynamic environment with broad responsibility, as this position will effectively partner with a wide range of collaborators across the company. You will have direct, front-line responsibility providing strategic counsel to various functions, including ethics and compliance, information technology, cybersecurity, and privacy, artificial intelligence, data governance and will liaise with specialty legal colleagues to counsel and strategize on these issues. This attorney will also collaborate with the government affairs team in influencing legislation and industry standards related to relevant information privacy. The position reports to the Associate Vice President, Assistant General Counsel, Digital Legal Office Global Legal Lead (Privacy).
**Responsibilities:**
+ Serve as the primary legal advisor on HIPAA Privacy and Security Rules, HITECH, and related healthcare data protection laws.
+ Provide legal counsel on the design and implementation of digital health technologies, Pharmacy Management Systems, EHR platforms, health plans, onsite employee health clinics and related primacy care services, mobile health applications and other healthcare IT solutions.
+ Advise on legal risks and mitigation strategies related to pharmacy intake and dispensing operations, including patient data intake, prescription processing, and digital consent.
+ Draft, review, and negotiate contracts involving protected health information (PHI), including Business Associate Agreements (BAAs), data sharing agreements, and vendor contracts.
+ Collaborate with IT, Compliance, and Product teams to ensure privacy-by-design principles are embedded in all digital solutions.
+ Monitor and interpret evolving federal and state privacy laws (e.g., CCPA, CPRA, state-specific pharmacy laws) and advise on their impact.
+ Support incident response and breach notification processes in accordance with HIPAA and state breach laws.
+ Provide training and education to internal team members on HIPAA, digital privacy, and pharmacy compliance.
+ Draft and review, and otherwise support negotiations regarding privacy provisions in a wide variety of agreements
+ Oversee legal response to data breaches or privacy/security incidents including investigations, notifications, and remediation
+ Support audits, regulatory inquiries, and enforcement actions
**Basic Qualifications**
+ J.D. degree from accredited schools.
+ Active license to practice law in the United States.
+ Minimum of 7 years of legal experience, with a focus on healthcare law.
+ Extensive experience and in-depth knowledge of the Health Insurance Portability and Accountability Act (HIPAA) and its regulations with consistent record of providing legal support to pharmacies, Covered Entities, and Business Associates.
**Additional Skills/Preferences**
+ Demonstrated experience standing up, supporting, and maintaining complex health and wellness privacy programs for regulated entities
+ Working knowledge and understanding of various privacy regulations, frameworks, and accompanying guidance
+ Experience successfully and strategically handling privacy risks, threats, and breaches
+ Ability to research, track, and turn regulations and enforcement trends into practical, actionable advice
+ Demonstrated collaboration skills with corporate business partners and/or clients, including the ability to work closely with information technology and security teammates and a clear understanding of roles and responsibilities
+ Basic knowledge of and understanding of privacy regulators, including the FTC, states attorneys general, and HHS
+ Familiarity with AI/ML in healthcare, interoperability standards, and health information exchanges
+ Highly motivated and collaborative partner with strong interpersonal skills and the ability to work effectively with team members and members of management across all levels of the company
+ Good judgement and a meticulous level of attention to detail
+ Excellent written and verbal communication skills with a demonstrated ability to influence others
+ Demonstrated commitment to expand knowledge and adapt to the changing environment
+ Comfortable operating with a sense of urgency and ability to manage competing priorities in a fast-paced and evolving environment
+ Experience counseling on emerging regulations and best practices in data governance, artificial intelligence, privacy, and cyber security
+ Experience counseling technology teams
+ Preferred Location: Indianapolis based.Open to remote with willingness to travel to Indianapolis on a quarterly basis or more often as required to meet relevant business needs
Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.
Lilly is proud to be an EEO Employer and does not discriminate on the basis of age, race, color, religion, gender identity, sex, gender expression, sexual orientation, genetic information, ancestry, national origin, protected veteran status, disability, or any other legally protected status.
Our employee resource groups (ERGs) offer strong support networks for their members and are open to all employees. Our current groups include: Africa, Middle East, Central Asia Network, Black Employees at Lilly, Chinese Culture Network, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinx at Lilly (OLA), PRIDE (LGBTQ+ Allies), Veterans Leadership Network (VLN), Women's Initiative for Leading at Lilly (WILL), enAble (for people with disabilities). Learn more about all of our groups.
Actual compensation will depend on a candidate's education, experience, skills, and geographic location. The anticipated wage for this position is
$177,000 - $259,600
Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly's compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees.
#WeAreLilly

LinkedIn is the world's largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We're also committed to providing transformational opportunities for our own employees by investing in their growth. We aspire to create a culture that's built on trust, care, inclusion, and fun - where everyone can succeed.
Join us to transform the way the world works.
At LinkedIn, our approach to flexible work is centered on trust and optimized for culture, connection, clarity, and the evolving needs of our business. The work location of this role is hybrid, meaning it will be performed both from home and from a LinkedIn office on select days, as determined by the business needs of the team.
This role?is preferred to?be based in either of our Bay Area office locations (San Francisco or Mountain View).
In this role, you will provide privacy advice on products in the advertising and AI space as well as on engineering systems designed to ensure LinkedIn's compliance with global data regulations. You will work in a fast-paced, diverse, collaborative, and motivated legal department that values humor and teamwork. You will partner with stakeholders across the legal department and company to provide guidance and drive smart, legally compliant, and "members first" solutions.
Responsibilities:
+ Documentation and data governance: Work across the team to complete Data Protection Impact Assessments and Legitimate Interest Analysis and work closely with engineering teams to develop policies that can be coded into LinkedIn's internal data management system to assist with compliance.
+ AI/GAI: Advise product counsel on privacy requirements regarding the use and development of cutting-edge Generative AI models and features.
+ Regulatory: (i) Support engagement with data protection regulators in the Americas and Asia; (ii) help drive resolution of escalated member requests for data access and deletion when a regulator is involved; and (iii) review privacy incidents to determine if breach notification may be warranted.
+ Transparency: Work with product counsel to develop clear and transparent disclosures for members to explain our data processing practices and their rights.
+ Privacy product consultation: Support privacy by design by analyzing and addressing the privacy impact of new products and features and advising product counsel on the same.
Basic Qualifications:
+ 3+ years of work experience, with a focus on data privacy, regulatory compliance, and/or product counseling.
+ Bachelors Degree or equivalent work experience.
+ J.D. and admission to the bar or the ability to practice in-house in the state in which you reside.
Preferred Qualifications:
+ Experience advising engineers, product teams and fellow lawyers on topics relating to privacy, data governance, and AI and working together to develop creative solutions.
+ Confident reviewing company practices and disclosures for privacy compliance issues and providing counsel on same
+ Ability to independently respond to regulatory inquiries in data privacy and/or AI areas.
+ A background in basic privacy engineering and data management concepts a plus.
+ A working understanding of various global privacy laws including European, Canadian and Asian. IAPP certifications for the corresponding regions is a plus.
+ Experience providing counsel on, or demonstrated understanding of, the issues faced by companies in the tech space and in particular, social media and AI.
+ Self-motivated team player with the ability to learn quickly, identify and resolve legal and business issues, drive projects and earn both the confidence and cooperation of your business and legal partners.
+ High standards with respect to work quality, strong communication skills, impeccable integrity, unquestionably good judgment, strong analytical skills, intense compassion for others, and a keen sense of humor.
+ You can work independently but also like to be part of a diverse team?
+ You are effective in a fast-paced environment where you will be expected to give quick, clear, and concise legal advice.
+ You like to work with business partners and enable business goals, and you are interested in online services and media.
+ When you see an issue that needs addressing, your instinct is to jump in and address it, but you are also comfortable relying on the expertise and assistance of others when necessary.
Suggested Skills:
+ Data Privacy
+ Regulatory Compliance
+ Product Counseling
LinkedIn is committed to fair and equitable compensation practices.
The pay range for this role is $120,000 - $195,000. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location. This may be different in other locations due to differences in the cost of labor.
The total compensation package for this position may also include annual performance bonus, stock, benefits and/or other applicable incentive compensation plans. For more information, visit Opportunity Statement**
We seek candidates with a wide range of perspectives and backgrounds and we are proud to be an equal opportunity employer. LinkedIn considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class.
LinkedIn is committed to offering an inclusive and accessible experience for all job seekers, including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful.
If you need a reasonable accommodation to search for a job opening, apply for a position, or participate in the interview process, connect with us at and describe the specific accommodation requested for a disability-related limitation.
Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process. Examples of reasonable accommodations include but are not limited to:
+ Documents in alternate formats or read aloud to you
+ Having interviews in an accessible location
+ Being accompanied by a service dog
+ Having a sign language interpreter present for the interview
A request for an accommodation will be responded to within three business days. However, non-disability related requests, such as following up on an application, will not receive a response.
LinkedIn will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by LinkedIn, or (c) consistent with LinkedIn's legal duty to furnish information.
**San Francisco Fair Chance Ordinance ?**
Pursuant to the San Francisco Fair Chance Ordinance, LinkedIn will consider for employment qualified applicants with arrest and conviction records.
**Pay Transparency Policy Statement ?**
As a federal contractor, LinkedIn follows the Pay Transparency and non-discrimination provisions described at this link: Data Privacy Notice for Job Candidates ?**
Please follow this link to access the document that provides transparency around the way in which LinkedIn handles personal data of employees and job applicants: