Principal Counsel, Privacy

About The Position

Requirements

• 12+ years of overall professional working experience, with at least 3 years at a reputable law firm and 5+ years in-house at a high-growth technology company directly advising senior leadership on privacy, data, and regulatory matters
• Deep expertise in U.S. privacy laws, including CCPA/CPRA, and working familiarity with emerging state privacy health frameworks
• Hands-on experience with adtech data flows — targeting, measurement, DSPs/SSPs, clean rooms, signal loss, and consent requirements in the programmatic ecosystem
• Demonstrated experience building or scaling a privacy program — operationalizing policies, establishing privacy review workflows, managing data subject rights processes, and coordinating cross-functionally with Product, Engineering, and Security
• Ability to build tools with AI that monitor, manage, and report on compliance
• Strong business acumen — you translate legal and regulatory risk into clear, prioritized, actionable options aligned with company objectives; comfortable advising executives on tradeoffs
• Exceptional communicator — equally fluent in technical and business contexts; comfortable engaging everyone from senior executives to engineers
• Proven ability to lead initiatives, influence without authority, and operate with autonomy in a high-growth environment
• Bachelor's degree and J.D. from an ABA-accredited law school (or foreign equivalent); active membership in good standing in a U.S. State Bar
• You naturally reach for AI in your work — at Babylist, every team uses AI daily. You're already using it to move faster and improve your output, and you stay curious about what's coming next

Responsibilities

• Own and evolve Babylist's privacy legal program — U.S. state privacy laws, adtech and data monetization, product-embedded privacy compliance, and AI governance
• Build and maintain the legal review process for the product lifecycle (PRDs, experiments, launch reviews) to embed privacy-by-design from the start
• Lead privacy compliance for our ads stack — data use agreements, signal measurement, identity resolution, and clean room arrangements with partners
• Draft and negotiate DPAs, data sharing agreements, and consent framework documentation; build scalable templates and a maintained clause library
• Partner with Engineering and Product on DSAR workflows, consent management, data mapping, and data minimization
• Advise on sensitive and health-adjacent data categories arising from Babylist Health and related offerings
• Monitor the U.S. privacy regulatory landscape; brief leadership and drive policy updates and training across GTM, Product, and Ops
• Manage outside privacy counsel efficiently — own the engagement strategy, not just the relationship

Benefits

• Competitive salary with equity and bonus opportunities
• Company-paid medical, dental, and vision insurance
• Retirement savings plan with company matching and flexible spending accounts
• Generous paid parental leave and PTO
• Remote work stipend to set up your office
• Perks for physical, mental, and emotional health, parenting, childcare, and financial planning