Privacy Counsel

  • Washington, DC
  • Employees can work remotely
  • Full-time

Company Description

Square builds common business tools in unconventional ways so more people can start, run, and grow their businesses. When Square started, it was difficult and expensive (or just plain impossible) for some businesses to take credit cards. Square made credit card payments possible for all by turning a mobile phone into a credit card reader. Since then Square has been building an entire business toolkit of both hardware and software products including Square Capital, Square Terminal, Square Payroll, and more. We’re working to find new and better ways to help businesses succeed on their own terms—and we’re looking for people like you to help shape tomorrow at Square.

Job Description

As senior Privacy Counsel, you'll have a broad range of responsibilities providing legal guidance on global projects affecting privacy, data protection and security with a particular focus on employee privacy, foundational privacy and security, and privacy legislation and advocacy. You will partner with cross-functional teams to advise on data uses while managing legal risk and ensuring regulatory compliance. You will partner with our Government Relations team to interpret proposed legislation, and assist with advocacy efforts. You will also be called upon to provide privacy and data security expertise to our commercial attorneys as they negotiate complex commercial deals that contribute to our business needs. As we expand our offerings globally, your ideas and contributions will make an immediate impact. 

This role can be located in Washington D.C., New York, or remote.

You Will:


  • Provide privacy and data security subject-matter expertise and guidance to colleagues including Compliance, Employment counsel, InfoSec, Trust & Safety, and engineering teams

  • Keep abreast of proposed privacy legislation and collaborate with our Government Relations team on advocacy efforts

  • Partner with our incident response team to investigate, analyze and report on data incidents

  • Respond to privacy and security-related employee data subject access requests and regulatory inquiries and investigations, and draft regulatory filings, coordinating such responses with global positions

  • Partner with commercial counsel and procurement to provide privacy subject-matter support for commercial agreements and vendor management

  • Update privacy notices and disclosures, and manage/update internal policies and procedures to ensure compliance with global laws bearing on privacy and cybersecurity

  • Help develop, enhance, and scale the existing global privacy program, including: privacy operations and documentation; employee training on data privacy and security; policy enforcement; privacy compliance program monitoring and auditing; and third-party risk assessment. Ensure the program's ongoing and efficient operation.

  • Work with Privacy Engineering, InfoSec, Compliance, and Trust & Safety teams to scope and perform periodic data privacy hygiene assessments, mitigation and remediation, including data privacy by design and default, accountability and compliance monitoring, and the mitigation of privacy and security risks

  • Remain up-to-date on relevant consumer protection, privacy and data security laws and regulations, industry approaches to privacy program management, and on privacy and security technological developments, threat vectors, and evolving industry standards to provide an ongoing ability to provide sound compliance advice


You have:

  • 7+ years of combined, relevant experience in a top law firm and in-house legal departments

  • A passion for advocating for the data protection interests of individuals while supporting innovative products and services

  • Experience providing pragmatic and actionable advice to clients on different legal risks and obligations under privacy and data security laws in the U.S. and Europe (including CCPA, and GDPR).

  • Experience in analyzing new privacy legislation

  • Developed and implemented external privacy notices

  • Advised on and managed internal policies and procedures on data use, security, and privacy

  • Experience advising on data uses in artificial intelligence and machine learning a plus

  • A JD from a top-tier law school and active membership in at least one state bar

Additional Information

At Square, we value diversity and always treat all employees and job applicants based on merit, qualifications, competence, and talent. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us by sending an email to assistance(at) We will treat your request as confidentially as possible. In your email, please include your name and preferred method of contact, and we will respond as soon as possible.


At Square, we want you to be well and thrive. Our global benefits package includes:
  • Healthcare coverage
  • Retirement Plans
  • Employee Stock Purchase Program
  • Wellness perks
  • Paid parental leave
  • Paid time off
  • Learning and Development resources
Privacy Policy