Our global media client is seeking a talented business-oriented privacy lawyer to join its Legal Department in Princeton or New York as Privacy Counsel. The attorney will be responsible for managing negotiations of privacy provisions in contracts as well as provide hands-on guidance to the newsrooms and consumer business teams (Marketing, Product) on privacy and data protection principles and regulations. The attorney will be part of the Privacy Team and also support privacy initiatives.
ESSENTIAL JOB RESPONSIBILITIES
- Develop contract structures, review contracts, and manage negotiations with customers, partners and vendors to ensure compliance with privacy and data protection laws.
- Counsel the consumer division, (e.g., marketing, product and news) on data collection, use and management in compliance with applicable privacy policies, laws and industry best practices, in connection with their business activities, including digital and mobile initiatives, marketing and ecommerce.
- Support the Privacy Team to further develop and operationalize the company’s privacy program, leveraging privacy risk management software.
- Draft or enhance privacy program-related policies and standards; conduct Data Protection Impact Assessments and other risk assessment activity as needed.
- Engage with the business on privacy and data-related matters, e.g., through employee training and raising employee awareness about relevant regulatory or industry developments; and
- Maintain updated knowledge of legal and regulatory developments that are relevant to Dow Jones consumer division, including in online privacy, marketing and digital media.
SKILLS AND EXPERIENCE REQUIRED:
- 3 – 5 years of privacy experience as a lawyer in a premier law firm or business. In-house experience a plus but not essential.
- Solid knowledge of global privacy and data protection requirements (e.g., GDPR, ePrivacy Directive, HIPAA, TCPA, CAN-SPAM, CCPA/CPRA and related state and federal legislation).
- Experience providing legal advice regarding privacy, data-sharing and related issues.
- Experience with vendor relationship management.
- Experience with using technology to mitigate privacy risks.
- CIPP/CIPM certification preferred but not required.