ABOUT THE JOB
As Director & Associate General Counsel, Privacy, you will head up Instacart's Global Privacy Program at Instacart by working closely with internal client teams in our product, policy, communications, CARE, engineering, and other teams to ensure company-wide compliance with relevant data protection and privacy laws. You’ll also partner closely with IT and security, developing policies and procedures to protect company data and manage vendor relationships.
You’ll need to be proactive and engaged, collaborative, excited about technology and e-commerce, and ready to roll your sleeves up and dig into tough legal problems to reach a creative solution.
Advising the business on privacy matters concerning product development and strategy, marketing, data use and governance, and risk
Lead, manage and provide strategic guidance for Instacart’s Global Privacy Program
Lead the Vendor Security Council that reviews, vets, and on-boards new vendors
Working closely with the Security team (and advising that team of technical requirements), creating, deploying and maintaining customer-facing, industry-leading privacy policies, procedures and practices for internal and external audiences
Manage compliance with all applicable privacy regulations, including PIPEDA, the Australian Privacy Act, GDPR, CCPA and HIPAA
Help lead and support the Incident Response Team in the review and coordination of potential privacy or data security incidents, including investigations, notifications, and other resolution efforts
Review/draft a variety of agreements to ensure compliance with privacy-related contract terms
Collaborating and coordinating with the Policy Team to proactively monitor and review privacy and data-protection related legislation and advocating for positions beneficial to the company
Keep Instacart at the forefront of the evolving regulatory landscape by staying up to date with best practices and legislative and regulatory developments
Think ahead, see around corners, and help to prepare for legal issues that may arise in the future.
We rely on our values to guide our decisions: Solve for the Customer, Every Minute Counts, This is Your Baby, Go Far, Together and Of Course, But Maybe. What does this mean for your role? We are looking for someone who has:
At least 12 years of practice experience, including time at a time at a top law firm and at least 3 years specifically focused on privacy and/or cybersecurity at an in-house legal department
A successful track record of overseeing multi-jurisdictional privacy programs, including implementation of the GDPR
Strong executive presence and the ability to lead teams working towards a goal
Deep subject matter expertise in global privacy laws and general passion about privacy and technology
Familiarity with a wide-variety legal issues affecting the Internet and e-commerce spaces
The ability to provide clear, concise legal advice, work effectively cross-functionally to drive to results, particularly with engineering, product and marketing teams
Sound judgment and skills in problem-solving, critical thinking, and interpersonal communication
Clear comfort and well-substantiated familiarity with technology
A team player