Privacy Lawyer

2 months ago


India Route Mobile Limited Full time

We're looking for a highly motivated experienced Legal Counsel, Privacy to join our Legal and Privacy team.

Primary Job Responsibilities Include

  • Partnering with Business Teams : Advises on data protection and data handling standards and on appropriate disclosure, notification and consent mechanisms. Assists in the development, review and negotiation of data sharing agreements, data transfer and processing agreements. Researches and responds to privacy-related questions as these arise.

  • Privacy Program Management : Assists in the development and maintenance of TeleSign’s global privacy program which includes ensuring its policies, standards, playbooks and standard operating procedures supports its global privacy program objectives. Develops and participates in delivering privacy training to employees. Supports ongoing measurement and auditing on overall effectiveness of the privacy program and execution of privacy policies and standards, both internally and by third-party vendors. Investigates and implements technical aids that support compliance.

  • Monitoring and Compliance with Applicable Data Protection Laws : Helps implement measures to ensure TeleSign is in compliance with applicable data protection laws and regulations. Monitors country-specific regulatory activities to ensure awareness of changes in regulatory environment globally. Helps develop and manage internal controls relating to privacy legal frameworks.

  • Data Subject Services : Helps implement and monitor out-opt, technical monitoring, and data subject services such as the data subject access request program. Ensures that subject access requests are logged and responded to within the prescribed periods.

  • Privacy Impact Assessments : Prepare documents, data flows, and other materials related to products (new products, product enhancements, changes to workflows and new use cases) and Protection Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs) and conduct periodic compliance assessments of these.

  • Privacy by Design : Collaborate with Product, Engineering and other teams to ensure incorporation of privacy by design approach into data processing procedures. Works to understand use cases and develop operational procedures for new business scenarios involving internal or external data handling. Refining and developing thoughtful policies and provide guidance on the privacy implications of products and services.

  • Assists in incident and data breach responses (including evaluating notification requirements).

  • Develop a data governance and compliance framework including managing the objectives, approach, repeatable and scalable processes, policies and procedures to ensure enterprise-wide adherence to retention and deletion schedules.

  • Other duties as assigned.

Qualifications

You are highly motivated, intelligent, and have demonstrated excellence in prior endeavors. The successful candidate should have:

  • A law degree (JD or equivalent)
  • At least 3+ years of practicing data protection or privacy law in a law firm or tech company
  • Demonstrated expertise of the GDPR, CCPA, (HIPAA – a plus) and a good understanding of other major privacy frameworks and evolving legislation, security laws, rules and regulations worldwide, as well as industry leading-practices and standards
  • Privacy certification (CIPP, CIPT, CIPM, CISSP, or similar) preferred
  • Experience interpreting privacy regulations
  • Deep understanding of personal data and broad knowledge of data across the business, ideally in the telecommunication industry, but relevant experience from other consumer/regulated industries will also be considered
  • Understanding of IT systems and their connection to data collection and processing
  • Excellent legal and business judgment with the ability both to assess and communicate risks to business partners in clear, actionable fashion to facilitate compliance programs that grow with the business
  • In-depth understanding of privacy policies, principles, and technologies as well as familiarity with privacy control frameworks
  • You understand the importance of data privacy, but also the practical obstacles of implementing those principles in a complex ecosystem in a fast-moving environment, and have experience working cross-functionally to overcome those obstacles
  • Experience developing policy and compliance training
  • Excellent organizational and communication skills
  • Exceptional written and verbal skills
  • Track record of taking initiative, having the ability to work independently, handle multiple projects with competing deadlines
  • Additional language skills (French, German, Spanish) a plus