Data Privacy Attorney

A law firm in Boston, MA, is seeking a highly skilled Data Privacy Attorney to join their team. The ideal candidate will be responsible for ensuring the firm’s compliance with data privacy laws across multiple jurisdictions, including the United States, European Union, Asia, and the Middle East. The role involves collaborating with various departments to manage data privacy projects, draft and negotiate contracts, and oversee compliance measures.Key Duties and Responsibilities:Collaborate with the Office of the General Counsel, Security & Risk Management department, and Audit & Advisory department to ensure compliance with global data privacy laws.Work closely with the firm’s Procurement function and Security Review Team to review, draft, and negotiate vendor contracts and other commercial agreements involving the transfer of personal data.Partner with the Global Data Privacy Office (GDPO) and other key stakeholders to review and advise on projects involving personal data collection or utilization, conduct privacy risk assessments, and ensure compliance with local data privacy laws.Respond to data subject access requests (DSARs) and other privacy rights requests under applicable laws in the United Kingdom, European Union, and the United States, including requests for data access or deletion.Implement and manage compliance measures, including maintaining and updating records of processing activities, data mapping, and conducting vendor management reviews.Review and update global transparency notices, privacy policies, and procedures; coordinate and assist with data privacy audits of the firm’s offices worldwide.Maintain the firm’s Binding Corporate Rules, support their ongoing review, and manage their application across the firm.Demonstrate strong interpersonal skills, effectively interacting with individuals at all organizational levels within the firm.Exhibit strong project management and organizational skills, including time management, prioritization, and handling multiple deadlines.Proactively drive improvements to the firm’s data privacy compliance posture.Requirements:5+ years of relevant experience in data privacy law.Juris Doctor (JD) or equivalent degree from an accredited law school.Experience advising on European Union data privacy laws is highly preferred.Active Bar admission and good standing.Proven ability to manage complex projects and interact with stakeholders at various levels.Education and Certifications:Juris Doctor (JD) or equivalent from an accredited law school.Active Bar admission.Certifications in data privacy or information governance (e.g., CIPP/US, CIPP/E) are a plus.Skills:In-depth knowledge of global data privacy laws and regulations.Strong analytical, project management, and organizational skills.Excellent written and verbal communication abilities.Ability to manage multiple priorities and meet deadlines.Proactive approach to driving compliance and improving processes.Strong interpersonal skills for effective collaboration with internal and external stakeholders.Benefits Offered:Comprehensive healthcare, life, and disability insurance.Generous 401(k) plan.At least 11 paid holidays per year and a PTO program that accrues 23 days during the first year of employment, with additional days based on tenure.Well-being programs, including mental health services, mindfulness and resiliency support, medical resources, and well-being events.

#J-18808-Ljbffr