- Washington, DC
- Employees can work remotely
As senior Privacy Counsel, you'll have a broad range of responsibilities providing legal guidance on global projects affecting privacy, data protection and security with a particular focus on employee privacy, foundational privacy and security, and privacy legislation and advocacy. You will partner with cross-functional teams to advise on data uses while managing legal risk and ensuring regulatory compliance. You will partner with our Government Relations team to interpret proposed legislation, and assist with advocacy efforts. You will also be called upon to provide privacy and data security expertise to our commercial attorneys as they negotiate complex commercial deals that contribute to our business needs. As we expand our offerings globally, your ideas and contributions will make an immediate impact.
This role can be located in Washington D.C., New York, or remote.
Provide privacy and data security subject-matter expertise and guidance to colleagues including Compliance, Employment counsel, InfoSec, Trust & Safety, and engineering teams
Keep abreast of proposed privacy legislation and collaborate with our Government Relations team on advocacy efforts
Partner with our incident response team to investigate, analyze and report on data incidents
Respond to privacy and security-related employee data subject access requests and regulatory inquiries and investigations, and draft regulatory filings, coordinating such responses with global positions
Partner with commercial counsel and procurement to provide privacy subject-matter support for commercial agreements and vendor management
Update privacy notices and disclosures, and manage/update internal policies and procedures to ensure compliance with global laws bearing on privacy and cybersecurity
Help develop, enhance, and scale the existing global privacy program, including: privacy operations and documentation; employee training on data privacy and security; policy enforcement; privacy compliance program monitoring and auditing; and third-party risk assessment. Ensure the program's ongoing and efficient operation.
Work with Privacy Engineering, InfoSec, Compliance, and Trust & Safety teams to scope and perform periodic data privacy hygiene assessments, mitigation and remediation, including data privacy by design and default, accountability and compliance monitoring, and the mitigation of privacy and security risks
Remain up-to-date on relevant consumer protection, privacy and data security laws and regulations, industry approaches to privacy program management, and on privacy and security technological developments, threat vectors, and evolving industry standards to provide an ongoing ability to provide sound compliance advice
7+ years of combined, relevant experience in a top law firm and in-house legal departments
A passion for advocating for the data protection interests of individuals while supporting innovative products and services
Experience providing pragmatic and actionable advice to clients on different legal risks and obligations under privacy and data security laws in the U.S. and Europe (including CCPA, and GDPR).
Experience in analyzing new privacy legislation
Developed and implemented external privacy notices
Advised on and managed internal policies and procedures on data use, security, and privacy
Experience advising on data uses in artificial intelligence and machine learning a plus
A JD from a top-tier law school and active membership in at least one state bar
At Square, we want you to be well and thrive. Our global benefits package includes:
- Healthcare coverage
- Retirement Plans
- Employee Stock Purchase Program
- Wellness perks
- Paid parental leave
- Paid time off
- Learning and Development resources