DATA PRIVACY COUNSEL US
NEW YORK
HYBRID WORKING (1 DAY PER WEEK IN THE OFFICE)
$160,000 $180,000 PLUS PACKAGE
Role Overview:
Morgan Philips Specialist Recruitment are presently representing a global leader in the field of actuarial services in their search for a Data Privacy Counsel to lead on privacy matters for their US and Canadian businesses.
The Successful candidate will be a member of the Global Data Privacy and will assist the Global Data Privacy Director (who is based in Paris) with the implementation of the privacy program in the USA and Canada including processes, procedures and initiatives, and collaborate with other departments and practices in support of the US/Canadian privacy program.
This person will also be involved in international projects and collaborate with Data Privacy Counsels in charge of other regions including France and India.
This role offers excellent growth opportunities and is ideal for a mid-level Counsel eager to advance to a Senior Data Protection Counsel position in the short term, and to a Head of Data Protection for the USA/Canada in the future.
Key Accountabilities:
Conduct research and monitor new and revised federal and state privacy laws, regularly reporting findings to the Global Data Privacy Director.
- Provide legal advice on a day-to-day basis.
- Assist with the implementation of the Global Data Protection Policy in the USA/Canada
- Prepare and present various data privacy trainings to company U.S./Canadian practices
- Negotiate U.S. Data Sharing Agreements and collaborate with the U.S. Legal Team.
- Assist with the creation of ad hoc Data Sharing Agreement templates
- Respond to requests for data privacy advice from the business, including assisting in responding to prospect and customer data protection questionnaires.
- Assist with identifying privacy risks in processes and systems and propose mitigations
- Identify any gaps in policies/procedures based on regulations and recommend prioritization of addressing gaps.
- Assist with the implementation of the international Vendor Management Program, participate in U.S./Canada vendor due diligence checks, and contract negotiations.
- Maintain a network of local DPCPs (Data Privacy Contact Persons) and providing them with advice and regular training when needed
- Assist with the drafting of employee notices/consent forms where required
- Maintain the companys Records of Processing Activities/Review the companys Data Mapping Questionnaires annually
- Assist with the management of Data Subject Access Requests (DSARs) and other requests from data subjects residing in the USA
- Assist with the drafting of Data Protection Impact Assessments where required
- Monitor implementation of data privacy recommendations made under Privacy Impact Assessments
- Assist with internal audits, privacy reviews and self-assessment analyses
Skills & Qualifications Required:
- A Juris Doctor or qualified lawyer in a relevant jurisdiction and must have passed Bar Exam.
- A minimum of 6 years of post-admission experience working in data privacy law (law firm or in-house legal practice).
- Working knowledge of US federal and state data privacy laws, including HIPAA/HITECH, GLBA, FCRA.
- The ideal candidate will have CIPP certification through the IAPP
- The ideal candidate will possess IT security knowledge
- The ideal candidate must have the International mindset and understanding of international data privacy laws, in particular GDPR.
- The ideal candidate must have the ability to deal with various laws across several states.
- The ideal candidate must be skilled in documenting compliance actions.
- The ideal candidate must have strong contract drafting and negotiating experience.
- Must be a native English speaker.
- Must have the ability to draft summaries and reports of legal analyses in a structured manner.
- Must have demonstrated experience in giving training.