Senior Counsel, Privacy, AI & Data Responsibility

About The Position

Requirements

• JD from an accredited law school and admitted to at least one bar in the United States.
• Strong experience in privacy and data protection law.
• Oral and written fluency, including legal drafting and presentation skills.
• Proficiency in providing privacy subject matter expertise to fast-moving product business and legal teams throughout the product lifecycle (ideation, design, development, deployment and enhancements)
• Expertise in and track record of dealing with global privacy and data protection laws.
• Pro-active approach to problem-solving with a demonstrated track record of successfully translating legal requirements into practical, actionable advice.
• Strong command of technology, software and/or engineering, including software development, e.g. technical use, administration, development, design, data flows and architecture of the aforementioned technology an asset.
• Ability to familiarize with privacy and data protection legal frameworks in other jurisdictions quickly.
• Experience in managing projects independently.
• Motivated self-starter with ability to excel at multi-tasking in a fast-paced environment.
• Strong analytic capabilities and written and oral communication skills and ability to simplify technical material for other audiences, including business teams, legal departments, regulators, etc. Attention to detail is a must.
• Exceptional interpersonal skills with proven experience in relationship building and partnering. Must work well in both team and individual settings.
• Superior time management, planning, and organizational skills.
• Ability to motivate and influence highly skilled professionals to achieve major organizational goals.

Nice To Haves

• Any additional qualifications (e.g., Master of Laws degree) considered an asset.
• IAPP certification an asset but not sufficient without relevant experience.
• Expertise in applying privacy and data protection analysis on emerging technologies, including various biometric modalities, encryption techniques, artificial intelligence & machine learning, and privacy enhancing technologies (PETs) highly valued.
• Knowledge of interactive marketing technologies, including cookies and other passive data collection technologies.
• Familiarity with the payments industry or financial services industry a plus.

Responsibilities

• Support Mastercard’s operationalization of compliance with privacy and data related laws – including, for example, CCPA/CPRA, GLBA, PIPEDA, GDPR, GDPL and other current and forthcoming privacy laws around the globe.
• Identify legal, business, and technical infrastructure requirements and controls to enable privacy compliance adopting the Privacy by Design process; work with legal, business, technical teams to assist implementation.
• Monitor for emerging regulatory developments and translate legal terms into business requirements.
• Define processes, workflows, and training material for support service personnel to facilitate legal compliance with applicable privacy and data protection laws and regulations.
• Assist the team to record data protection impact assessments where required, and to identify and implement privacy controls and safeguards to mitigate risks.
• Draft and negotiate data processing terms and agreements with vendors and customers, including in relation to international data transfers, consent and notice representations and other data-related contract provisions.
• Draft privacy notices and review consumer-facing material, including marketing and communications campaigns, for compliance with applicable privacy and data protection requirements.
• Maintain records of processing for all personal data processing activities as required under applicable data protection laws, regulations, and standards.
• Engage with the organization to assist in training employees on privacy and data protection requirements, handle privacy-related queries and raise employee awareness about privacy and data protection developments.

Benefits

• insurance (including medical, prescription drug, dental, vision, disability, life insurance)
• flexible spending account and health savings account
• paid leaves (including 16 weeks of new parent leave and up to 20 days of bereavement leave)
• 80 hours of Paid Sick and Safe Time, 25 days of vacation time and 5 personal days, pro-rated based on date of hire
• 10 annual paid U.S. observed holidays
• 401k with a best-in-class company match
• deferred compensation for eligible roles
• fitness reimbursement or on-site fitness facilities
• eligibility for tuition reimbursement