CrawlJobs Logo
Mastercard Logo Mastercard · Legal

Counsel – Privacy & Data Protection

United Kingdom, London · Job Posted May 31, 2026
Apply Position
Job Link Share

Job Description

Mastercard’s global Commercial and New Payment Flows (CNPF) Privacy team is seeking a Privacy Counsel to support its money transfer solutions. These products enable fast, secure, and seamless domestic and cross border payments, helping individuals and businesses move funds efficiently across a wide range of use cases. The role provides hands on legal support to CNPF products and services, advising on privacy, AI, and data protection across the full product lifecycle. This includes contributing to the design and launch of new payment solutions, analysing data flows, tracking regulatory developments, and negotiating data protection terms in commercial agreements. The Counsel will help ensure that solutions align with global privacy, AI, and data governance requirements. The successful candidate will operate comfortably at both strategic and operational levels, offering clear, practical advice that supports innovation while managing risk. A strong understanding of digital payments, financial services technologies, and data driven systems is essential, along with experience embedding Privacy by Design into products and processes. Working closely with product, engineering, and business teams, the Counsel will play a key role in enabling innovation in domestic and cross border payments while maintaining a robust and scalable privacy framework. This position is based in London and reports to the Senior Managing Counsel, Privacy, AI & Data Responsibility, in Belgium.

Job Responsibility

  • Provide day to day privacy support to business teams, handling product queries and operational issues, and escalating complex matters where needed
  • Support the CNPF privacy team, including Move (Mastercard Send and Cross Border Services), by preparing guidance, assessments, and initial reviews for product initiatives and market expansion
  • Advise across the broader CNPF space (including B2B payments and SME solutions) on data use, AI enabled products, data flows, and controller/processor roles in multi party ecosystems
  • Embed Privacy by Design into the product lifecycle through initial impact assessments, risk screenings, and alignment with Mastercard’s privacy and AI governance frameworks
  • Assist with responses to government data requests, RFIs, and CDD inquiries by gathering inputs, preparing drafts, and ensuring compliance with internal and legal requirements
  • Support contracting by drafting and reviewing standard data protection terms, preparing for negotiations, and escalating higher risk issues
  • Monitor regulatory developments and contribute to legal scans, providing clear, practical summaries of key impacts
  • Help build privacy awareness across the business, including developing training materials and supporting capability building efforts
  • Collaborate across teams to ensure consistent application of privacy requirements and effective follow through on actions

Requirements

  • Qualified lawyer with a strong academic foundation and solid legal training
  • Additional certifications (e.g., IAPP) are a plus
  • Keen interest in global data privacy developments and a working knowledge of privacy and data protection frameworks (e.g., GDPR
  • familiarity with others like CCPA is helpful but can be learned on the job) with some practical experience applying them, previous inhouse or technology/privacy exposure is beneficial
  • Familiarity with financial services, payments, or digital products is preferred, or a strong willingness to learn about these sectors
  • Experience with privacy platforms such as OneTrust is an advantage
  • Curiosity about digital technologies and an interest in how they intersect privacy and data governance
  • Proactive, practical, and eager to translate legal requirements into clear, usable guidance with support from senior team members
  • Strong verbal and written communication skills, with the ability to simplify complex information for non-legal audiences
  • Highly organized, detail-oriented, and able to manage multiple tasks in a fast-paced environment
  • Collaborative and team-oriented, with the ability to build positive working relationships across functions
  • Motivated to grow, take initiative, and further develop or within the team

Nice to have

  • Additional certifications (e.g., IAPP)
  • Familiarity with others like CCPA
  • Experience with privacy platforms such as OneTrust
Mastercard - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Counsel – Privacy & Data Protection

8 matching positions

Data Protection & AI Counsel

Our Privacy, AI & Data Protection Counsel position is a fantastic opportunity fo...
Location
Location
United Kingdom
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience with a focus on privacy, data protection, and AI domains
  • Expertise in global privacy concepts and laws (specifically US, EU, UK privacy and data protection laws are a must)
  • General understanding and experience handling other global laws or ability to learn, understand and practically implement new laws quickly
  • Expertise in AI governance frameworks (e.g., EU AI Act, ISO, NIST AI RMF)
  • Expertise in security best practices
  • Ability to assess a wide variety of complex situations and questions quickly and provide practical, business oriented advice
  • Ability to multi-task and work in a fast paced environment with a “go-getter” and hands on approach
  • Proven ability to learn quickly about new technologies and what data protection risks and challenges these create for the business and understand how to practically mitigate and manage such risks
  • Proven ability to assess, mitigate, and manage risks related to AI deployment, data privacy, and regulatory compliance
  • A team-player, collaborative mindset, with experience collaborating with legal, compliance, and technical teams to implement Privacy-Enhancing Technologies (PETs) and ensure responsible AI deployment across the organization
Job Responsibility
Job Responsibility
  • Be part of Wiz’s global Data Protection team to advance Wiz’s global privacy, data protection, and AI compliance program, with a specific focus on third party risk management and mitigation, enterprise initiatives involving AI and data protection considerations and AI Governance
  • Work closely with the wider Wiz legal, compliance and security teams
  • Support the procurement legal team as the Subject Matter Expert for privacy, AI and data protection matters arising in Wiz’s vendor relationships and third-party contracts
  • Advising and assisting Wiz’s commercial procurement attorneys on negotiating DPAs, security addenda and AI provisions
  • Providing practical, business oriented solutions while protecting Wiz’s data and interests
  • Developing and maintaining internal resources and providing training and guidance to help the teams with their BAU work
  • Provide guidance to internal business stakeholders on managing privacy, data protection, and AI-related risks in vendor engagements and a wide variety of internal initiatives involving privacy, AI and data protection considerations, ensuring alignment with Wiz’s compliance framework and principles and applicable laws
  • Identify, assess, mitigate and track privacy, data protection and AI-related risks at the enterprise level to ensure compliance with regulatory and industry standards, and help drive programs that strengthen privacy and AI risk management across the company
  • Contribute to the building and maturity of Wiz’s AI Governance Program and track the evolving landscape of AI regulations and standards (e.g., EU AI Act, US states GenAI Laws) and provide practical guidance to different internal teams
Read More
Arrow Right

Data Protection & AI Counsel

Our Privacy, AI & Data Protection Counsel position is a fantastic opportunity fo...
Location
Location
Germany
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience with a focus on privacy, data protection, and AI domains
  • Expertise in global privacy concepts and laws (specifically US, EU, UK privacy and data protection laws are a must, with a general understanding and experience handling other global laws or ability to learn, understand and practically implement new laws quickly)
  • Expertise in AI governance frameworks (e.g., EU AI Act, ISO, NIST AI RMF), and security best practices
  • Ability to assess a wide variety of complex situations and questions quickly and provide practical, business oriented advice
  • Ability to multi-task and work in a fast paced environment with a “go-getter” and hands on approach
  • Proven ability to learn quickly about new technologies and what data protection risks and challenges these create for the business and understand how to practically mitigate and manage such risks
  • Proven ability to assess, mitigate, and manage risks related to AI deployment, data privacy, and regulatory compliance
  • A team-player, collaborative mindset, with experience collaborating with legal, compliance, and technical teams to implement Privacy-Enhancing Technologies (PETs) and ensure responsible AI deployment across the organization
  • Ability to navigate evolving regulatory landscapes, emerging AI risks, and business needs
  • Ability to provide practical strategic insights and contributions to the long term growth and maturity of Wiz’s programs
Job Responsibility
Job Responsibility
  • Be part of Wiz’s global Data Protection team to advance Wiz’s global privacy, data protection, and AI compliance program, with a specific focus on third party risk management and mitigation, enterprise initiatives involving AI and data protection considerations and AI Governance
  • Work closely with the wider Wiz legal, compliance and security teams
  • Support the procurement legal team as the Subject Matter Expert for privacy, AI and data protection matters arising in Wiz’s vendor relationships and third-party contracts
  • Provide guidance to internal business stakeholders on managing privacy, data protection, and AI-related risks in vendor engagements and a wide variety of internal initiatives involving privacy, AI and data protection considerations, ensuring alignment with Wiz’s compliance framework and principles and applicable laws
  • Identify, assess, mitigate and track privacy, data protection and AI-related risks at the enterprise level to ensure compliance with regulatory and industry standards, and help drive programs that strengthen privacy and AI risk management across the company
  • Contribute to the building and maturity of Wiz’s AI Governance Program and track the evolving landscape of AI regulations and standards (e.g., EU AI Act, US states GenAI Laws) and provide practical guidance to different internal teams
Read More
Arrow Right

Product & Data Protection Counsel

Come join the company that is reinventing cloud security and empowering business...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 3 years of experience in an in-house product counsel role
  • Technical understanding of the development and functionality of SaaS products
  • Familiarity with privacy, data protection, and IP laws, as well as practical issues including AI, open source, and export control
  • Experience negotiating and drafting commercial agreements, including SaaS and integration agreements, with a focus on privacy and security terms
  • Excellent ability to communicate legal requirements to a non-legal audience and identify practical solutions
  • Proven ability to collaborate effectively with other teams, including Security, GRC, Product, and R&D
  • Strong operational and organizational skills with experience building and managing processes
  • Strong research and analytical skills
  • Fluency in English is a must
Job Responsibility
Job Responsibility
  • Work as part of the Wiz Product & Data Protection Team, with members based in Israel and the US
  • Act as a key partner and advisor to Wiz’s Product and R&D teams, advising on legal, commercial, regulatory, and data protection aspects throughout the product lifecycle
  • Assess, mitigate, and manage risks related to the product lifecycle and serve as a subject matter expert on product issues
  • Handle reviews of new product features and processing activities from a privacy, data protection, and compliance perspective
  • Review and negotiate product-related vendor and integration agreements
Read More
Arrow Right

Global Data Privacy Counsel

We are looking for a senior attorney with extensive experience in global data pr...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor degree from a reputable, accredited U.S. law school
  • Active license in good standing with one or more U.S. state bars (Georgia preferred)
  • 10+ years of progressive experience in data privacy and cybersecurity legal matters, with significant in-house experience at a high-growth, technology-driven company
  • Deep expertise and knowledge of and hands-on experience with U.S. and international data privacy, cybersecurity, and compliance laws and frameworks (including GDPR, CCPA/CPRA, PCI-DSS, ISO certifications, and other relevant global standards) and leading-edge AI regulations and frameworks
  • Demonstrated success in providing strategic legal counsel that balances risk management with enabling innovation and business growth, particularly in payments and data-driven initiatives
  • Proven experience leading global privacy and data protection programs, including managing privacy and data protection risk frameworks and governance
  • Experience managing external counsel, auditors, and regulators
  • Proven ability to lead, develop, and inspire diverse, global teams, including direct leadership experience with Data Protection Officers and other privacy professionals
  • Strong business acumen with the ability to translate complex legal concepts into clear, actionable advice that aligns with business objectives and supports deal-making and sales acceleration
  • Excellent communication and interpersonal skills, with the ability to influence stakeholders at all levels, including senior executives and cross-functional teams globally
Job Responsibility
Job Responsibility
  • Serve as a trusted strategic legal advisor to executive leadership, business unit and function heads, and the governance committees on global privacy, data protection, and cybersecurity risks, as well as opportunities aligned with rapid business growth and innovation
  • Design, lead, and continuously evolve the global privacy and data protection program, ensuring it not only meets regulatory requirements but also supports scalable growth and competitive advantage in a fast-paced, high-growth environment
  • Partner closely with product, technology, payments, data, software and hardware sales, marketing, and strategy teams to embed privacy-by-design and data governance principles into all data-driven and payment-related initiatives
  • Advise on privacy, data protection, cross-border data processing, and emerging technologies (AI and machine learning), in connection with parking, public transport and other urban mobility technologies and data services (B2B, B2C), to help the company navigate these complex regulatory environments while accelerating innovation
  • Balance risk management with enabling agility—help business units achieve their ambitious growth objectives without compromising compliance or customer trust
  • Lead and manage a global, unified privacy and data protection team, including the EU Data Protection Officer and EU Privacy Program Manager, and serve as the global privacy and data protection leader responsible for harmonizing privacy and data protection practices across all regions
  • Act as the company’s U.S. and Canada Privacy Officer, overseeing all U.S.-specific and Canada-specific aspects of the global privacy and data protection program
  • Own enterprise-wide development, implementation, and continuous improvement of privacy and data protection policies, standards, and frameworks aligned with relevant global privacy and data protection-related regulations
  • Develop and maintain a privacy and data protection risk management framework and a dashboard of key privacy metrics to inform leadership decision making and monitor program effectiveness in a high-growth environment
  • Lead privacy and data protection audits and program assessments to ensure compliance and identify areas for improvement aligned with rapid company growth
Read More
Arrow Right

Privacy Counsel

We are on the lookout for a Privacy Counsel to join Delivery Hero Data Protectio...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
deliveryhero.com Logo
Delivery Hero
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience (3+ years) in data protection / privacy or related areas
  • An educational background in law, at least bachelor's or comparable degree (e.g. German First States Examination)
  • Excellent English language skills
  • Strong communication and stakeholder management skills, with experience influencing across different cultures and functions
  • Proactive, taking ownership, anticipating challenges, and actively supporting initiatives forward
Job Responsibility
Job Responsibility
  • Provide legal advice on data protection matters under global frameworks such as the GDPR
  • Provide expert, risk-based privacy advice to the business on new products, initiatives, and operational changes
  • Provide guidance on employee data protection (Beschäftigtendatenschutz), including policies and processes for handling employee personal data
  • Support the data mapping process and documentation of data processing activities, including the performance of data protection impact assessments (DPIAs)
  • Develop, implement, and maintain global privacy and data protection policies, notices, and internal procedures
  • Support the team’s communications to the DH Group management board, supervisory board, and business leadership teams
  • Conduct privacy maturity audits, ensuring consistency in reporting and remediation efforts
  • Support fine-related or other legal proceedings and investigations, including the development of mitigation plans
  • Monitor ongoing developments around AI governance and contribute to the improvement of AI governance frameworks
What we offer
What we offer
  • Hybrid working model
  • 27 days holiday with an extra day on 2nd and 3rd year of service
  • 1.000 € Educational Budget
  • Language Courses
  • Parental Support
  • Access to the Udemy Business platform
  • Health Checkups
  • Meditation
  • Yoga
  • Gym & Bicycle Subsidy
  • Fulltime
Read More
Arrow Right

Privacy Counsel

Privacy Counsel role at Fever, the world's leading tech platform for culture and...
Location
Location
Spain , Madrid
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Be a barred lawyer in a EU jurisdiction or the UK is a plus (especially France, UK, Portugal and Germany)
  • 6 or more years post-bar professional legal experience focused on implementation of global privacy compliance programs
  • At least 4-5 years of in-house experience —preferably in high-growth, technology and direct-to-consumer business
  • An internationally recognized privacy certification, such as CIPP/E, CIPM, CIPT or CDPP is a plus
  • Speak fluent English with a command of legal English, with Portuguese, German, French, Italian or Spanish fluency a plus
  • Previous experience in implementation and deployment of privacy procedures (data mapping, vendor risk management, data subject requests, etc.)
  • Excellent academic record or experience in top-notch companies or top-tier law-firms
  • Team-player commitment and technology affinity with marketplace platforms and digital services
Job Responsibility
Job Responsibility
  • Support Privacy team in developing Fever's global privacy program to ensure compliance with data protection laws across Europe and international regulations
  • Provide advice to Legal department and business units on privacy requirements and risks for informed decision making and privacy-by-design initiatives
  • Assistance in definition of requirements and controls for monitoring ISO 27001 & ISO 27701 certifications
  • Perform third party services risk assessments and negotiate data sharing/processing agreements and data protection issues within commercial contracts
  • Maintain understanding of trends and initiatives in privacy and personal data management to provide risk-based strategic advice
  • Coordinate responses to requests from individuals and law enforcement or government agencies
  • Provide counsel and oversight on response to personal data breaches
  • Identify and escalate significant or potential data protection or privacy issues
  • Assist in design of training on privacy and data protection
What we offer
What we offer
  • Attractive compensation package consisting of base salary
  • 40% discount on all Fever events and experiences
  • Work in location in heart of city with possible travel across markets
  • Home office friendly
  • Responsibility from day one and professional and personal growth
  • Great work environment with young, international team of talented people
  • Health insurance and other benefits such as Flexible remuneration with 100% tax exemption through Cobee
  • English Lessons and Gympass
  • Possibility to receive in advance part of salary by Payflow
  • Free snacks, drinks and fruit at office
  • Fulltime
Read More
Arrow Right

Cybersecurity & Data Privacy Associate

A US law firm is seeking a Cybersecurity & Data Privacy Associate to join its dy...
Location
Location
United Kingdom , London
Salary
Salary:
180000.00 - 280000.00 GBP / Year
https://www.douglas-scott.co.uk Logo
Douglas Scott
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • England & Wales-qualified lawyer or equivalent
  • strong academic background
  • experience in cybersecurity and data privacy
  • experience with GDPR and UK privacy compliance frameworks
  • understanding of NIS2, DORA, and operational resilience laws
  • knowledge of M&A due diligence and data privacy aspects of transactions
  • ability to draft privacy policies, data protection agreements, and notices
  • passion for cybersecurity, data protection, and emerging technology law
  • knowledge of AI governance and regulation.
Job Responsibility
Job Responsibility
  • Advising on cybersecurity preparedness and incident response
  • managing regulatory investigations and enforcement actions, particularly with UK/EU regulators
  • assisting clients with building GDPR and UK privacy compliance frameworks, including NIS2, DORA, and operational resilience laws
  • supporting M&A due diligence and data privacy aspects of transactions
  • drafting privacy policies, data protection agreements, and notices
  • providing counsel on AI governance and emerging tech issues.
What we offer
What we offer
  • Top of the market US market salary
  • year-end bonus
  • comprehensive benefits package, including technology allowances, gym benefits, private medical insurance, enhanced parental leave
  • hybrid working model
  • access to top-tier training, mentoring, and real-time feedback
  • dedicated support for lateral hires through the firm’s Skadden Integration+ program
  • opportunities to participate in pro bono work through the firm’s collaboration with LawWorks.
  • Fulltime
Read More
Arrow Right

Data Privacy & Cybersecurity Lawyer

We are currently seeking a Data Privacy & Cybersecurity Lawyer to work with some...
Location
Location
United States
Salary
Salary:
140000.00 USD / Year
axiomlaw.com Logo
Axiom Law
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience working in the data privacy space
  • Substantive data protection and data privacy experience and an in-depth knowledge of U.S. and EU privacy statutes – including GDPR, CCPA
  • Experience standardizing policies, protocols, and training programs, including the associated documents such as vendor and client contracts
  • Active bar license in the state where you reside
Job Responsibility
Job Responsibility
  • Provide legal advice and counsel on privacy compliance requirements and opportunities for improvement of privacy policies
  • Work with and advise business and compliance clients directly, as well as providing guidance and practical solution
  • Maintain strong, collaborative relationships with internal business partners and stakeholders
  • Experience providing legal advice regarding privacy, privacy impact assessments, data-sharing, and related issues
What we offer
What we offer
  • health benefits
  • 401K
  • professional development resources and learning and development programs
Read More
Arrow Right