CrawlJobs Logo

Senior Counsel, Privacy, AI & Data Responsibility

mastercard.com Logo

Mastercard

Location Icon

Location:
United States of America , Purchase

Category Icon
Category:
Legal

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

204000.00 - 325000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Mastercard is committed to balancing innovation with legal compliance and has embedded Privacy, AI and Data Responsibility into the core of its business strategy. As part of this commitment, Mastercard has built a world-class AI Legal Center of Excellence and is expanding its talent globally. The Senior Counsel – Privacy, AI & Data Responsibility will play a pivotal role in shaping Mastercard’s approach to responsible AI driving privacy and AI regulatory aspects as well as enabling projects emerging from the AI and Data Office. This role will report to the Senior Managing Counsel, Privacy, AI & Data Responsibility and will be a member of the AI Legal Center of Excellence and the Global Privacy, AI & Data Responsibility (PAIR) team.

Job Responsibility:

  • Partner with the AI and Data Office to enable AI efforts, including big bets from a privacy and AI legal perspective
  • Work with business stakeholders to implement legal, technical, operational and administrative requirements for Mastercard's AI solutions and uses stemming from evolving AI regulations globally
  • Provide AI legal and privacy expertise to key initiatives furthering Mastercard AI Governance
  • Develop and review documentation on Mastercard's Responsible AI
  • Monitor regulatory guidance and enforcement on AI laws to assess evolving impact on Mastercard’s AI Compliance Program
  • Collaborate with Public Policy and Government Affairs on engagement efforts on evolving AI regulatory and policy initiatives

Requirements:

  • Law degree required
  • Membership to a Bar (if permitted by law)
  • Solid expertise in AI legal frameworks
  • Strong understanding of global data protection laws (e.g., GDPR, CCPA)
  • Track record dealing with Artificial Intelligence projects, products or solutions
  • Good understanding of AI technologies, incl. Generative and Agentic AI
  • Ability to translate complex technical concepts into practical legal solutions
  • Ability to collaborate across functions and influence stakeholders
  • Exceptional interpersonal skills with proven experience in relationship building and partnering
  • Superior time management, planning, and organizational skills
  • Strong analytic capabilities, and written and oral communication skills
  • Creativity and "can-do" attitude is a must

Nice to have:

Any additional qualifications (e.g. Master of Laws degree, AI or privacy certifications) considered an asset

What we offer:
  • Insurance (including medical, prescription drug, dental, vision, disability, life insurance)
  • Flexible spending account and health savings account
  • Paid leaves (including 16 weeks of new parent leave and up to 20 days of bereavement leave)
  • 80 hours of Paid Sick and Safe Time
  • 25 days of vacation time and 5 personal days, pro-rated based on date of hire
  • 10 annual paid U.S. observed holidays
  • 401k with a best-in-class company match
  • Deferred compensation for eligible roles
  • Fitness reimbursement or on-site fitness facilities
  • Eligibility for tuition reimbursement

Additional Information:

Job Posted:
February 04, 2026

Employment Type:
Fulltime
Icon
Mastercard - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Counsel, Privacy, AI & Data Responsibility

Global Data Privacy Counsel

We are looking for a senior attorney with extensive experience in global data pr...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor degree from a reputable, accredited U.S. law school
  • Active license in good standing with one or more U.S. state bars (Georgia preferred)
  • 10+ years of progressive experience in data privacy and cybersecurity legal matters, with significant in-house experience at a high-growth, technology-driven company
  • Deep expertise and knowledge of and hands-on experience with U.S. and international data privacy, cybersecurity, and compliance laws and frameworks (including GDPR, CCPA/CPRA, PCI-DSS, ISO certifications, and other relevant global standards) and leading-edge AI regulations and frameworks
  • Demonstrated success in providing strategic legal counsel that balances risk management with enabling innovation and business growth, particularly in payments and data-driven initiatives
  • Proven experience leading global privacy and data protection programs, including managing privacy and data protection risk frameworks and governance
  • Experience managing external counsel, auditors, and regulators
  • Proven ability to lead, develop, and inspire diverse, global teams, including direct leadership experience with Data Protection Officers and other privacy professionals
  • Strong business acumen with the ability to translate complex legal concepts into clear, actionable advice that aligns with business objectives and supports deal-making and sales acceleration
  • Excellent communication and interpersonal skills, with the ability to influence stakeholders at all levels, including senior executives and cross-functional teams globally
Job Responsibility
Job Responsibility
  • Serve as a trusted strategic legal advisor to executive leadership, business unit and function heads, and the governance committees on global privacy, data protection, and cybersecurity risks, as well as opportunities aligned with rapid business growth and innovation
  • Design, lead, and continuously evolve the global privacy and data protection program, ensuring it not only meets regulatory requirements but also supports scalable growth and competitive advantage in a fast-paced, high-growth environment
  • Partner closely with product, technology, payments, data, software and hardware sales, marketing, and strategy teams to embed privacy-by-design and data governance principles into all data-driven and payment-related initiatives
  • Advise on privacy, data protection, cross-border data processing, and emerging technologies (AI and machine learning), in connection with parking, public transport and other urban mobility technologies and data services (B2B, B2C), to help the company navigate these complex regulatory environments while accelerating innovation
  • Balance risk management with enabling agility—help business units achieve their ambitious growth objectives without compromising compliance or customer trust
  • Lead and manage a global, unified privacy and data protection team, including the EU Data Protection Officer and EU Privacy Program Manager, and serve as the global privacy and data protection leader responsible for harmonizing privacy and data protection practices across all regions
  • Act as the company’s U.S. and Canada Privacy Officer, overseeing all U.S.-specific and Canada-specific aspects of the global privacy and data protection program
  • Own enterprise-wide development, implementation, and continuous improvement of privacy and data protection policies, standards, and frameworks aligned with relevant global privacy and data protection-related regulations
  • Develop and maintain a privacy and data protection risk management framework and a dashboard of key privacy metrics to inform leadership decision making and monitor program effectiveness in a high-growth environment
  • Lead privacy and data protection audits and program assessments to ensure compliance and identify areas for improvement aligned with rapid company growth
Read More
Arrow Right

Senior Corporate Counsel, Product and Privacy

We are looking for a sharp and strategic attorney to join our Legal, Privacy and...
Location
Location
United States
Salary
Salary:
200000.00 - 230000.00 USD / Year
pomelocare.com Logo
Pomelo Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • JD from an accredited law school with active U.S. bar membership
  • 7+ years of legal experience – a blend of law firm and in-house roles in health tech or digital health
  • Direct, hands-on experience advising on product development and comfortable with rapid iteration
  • Demonstrated experience counseling on AI/ML products and services, with a strong understanding of the associated legal and ethical implications of AI in healthcare
  • Strong familiarity with U.S. privacy laws, e.g., HIPAA and state consumer privacy laws and regulations, and the laws and regulations that impact a health care business, e.g., TCPA, CAN-SPAM, telehealth and D2C is a major plus
  • Excellent communication, analytical and problem-solving skills with the ability to translate complex legal concepts into actionable business guidance
  • Collaborative team player who builds strong relationships across departments
Job Responsibility
Job Responsibility
  • Partner with cross-functional teams to provide practical legal guidance to product, engineering, clinical and operations teams on healthcare and regulatory considerations across the product lifecycle, including product development, our user interface and experience, feature releases and AI-powered initiatives and decision support
  • Partner with the General Counsel and other leaders to continue maturing our responsible AI governance program, ensuring that our AI innovations balance strategic business goals with regulatory compliance and ethical considerations
  • Actively monitor and analyze new and evolving AI regulations, providing timely updates and actionable insights to leadership to ensure our initiatives remain compliant
  • Review and advise on consumer-facing marketing materials and campaigns to ensure compliance with applicable advertising and consumer protection laws
  • Serve as a key legal resource and partner on privacy and data security matters
  • Partner closely with our compliance team to build and mature our privacy program, advising on legal considerations related to data flows, risk assessments, and the development of new policies and procedures
  • Provide guidance on the development of new product and service lines, ensuring they align with HIPAA and evolving state consumer privacy laws
What we offer
What we offer
  • Competitive healthcare benefits
  • Generous equity compensation
  • Unlimited vacation
  • Fulltime
Read More
Arrow Right

Compliance Analyst

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to...
Location
Location
United States , Remote
Salary
Salary:
Not provided
insightsoftware.com Logo
insightsoftware
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field
  • Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies
  • Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests
  • Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles
  • A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management
  • Experience with third-party screening tools and vendor risk management platforms
  • Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNowMetricStream)
Job Responsibility
Job Responsibility
  • Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics
  • Conduct secondary screening of third parties (vendors, partners, customers) , and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations)
  • Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs")
  • Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA)
  • Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries
  • Support privacy management tools and platforms for consent management and privacy workflow automation
  • Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring
  • Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking
  • Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance
  • Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls
Read More
Arrow Right

Senior Director Privacy Counsel

Bumble’s mission is to foster healthy and equitable relationships across the glo...
Location
Location
United States , Austin; New York
Salary
Salary:
205000.00 - 275000.00 USD / Year
bumble.com Logo
Bumble Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • J.D. degree and active bar membership in good standing
  • 12+ years of relevant privacy and data protection experience, including in-house counsel roles with U.S.-based global companies
  • Deep understanding of global privacy regulations, including GDPR, UK GDPR, CCPA/CPRA, biometric specific laws and other U.S. privacy and data security frameworks
  • Demonstrated experience leading complex data breach and incident response programs, including coordination with InfoSec, legal assessments, and notification requirements
  • Hands-on experience owning and managing ROPA, DPIAs, and other GDPR compliance artifacts
  • Practical, risk-based mindset and strong organizational skills—comfortable building scalable systems that reduce redundancy and ensure compliance
  • Ability to distill complex regulatory requirements into clear, actionable advice tailored for business partners
  • Experience building teams and/or leading through senior cross-functional partners — setting standards, coaching, and creating clarity across ambiguous, high-impact work
  • Strong interpersonal and communication skills with a proven track record of influencing and collaborating across diverse global teams, including the ability to present to and advise senior leaders across the organization and the members of the Audit Committee
  • Deep alignment with Bumble’s mission, values, and global focus
Job Responsibility
Job Responsibility
  • Define Bumble’s global privacy strategy, operating model, and multi-year roadmap, navigating new uses of member data in AI models as well as the emerging regulatory schemes that will govern this work
  • Provide critical strategic legal guidance regarding privacy usage that drives both innovation and the Company’s commitment to privacy while building an efficient & scalable privacy compliance function - and partnering hands-on with leaders across the organisation
  • Drive scalable, cross-functional privacy compliance programs aligned with global frameworks including GDPR, UK DPA, CCPA/CPRA, and other U.S. state-level privacy laws, creating a data governance framework and implementing a data governance structure
  • Provide regular privacy reporting and presentations to the Audit Committee and senior leadership, clearly communicating risk, readiness, trends, and decisions in a way that supports strong governance
  • Partner closely with an external Data Protection Officer (DPO) and internal senior leaders to navigate EU and UK obligations, US privacy frameworks, and evolving regulatory expectations, negotiating solutions that preserve relationships and outcomes
  • Lead Bumble’s privacy-related cyber incident and data breach response program end-to-end in close partnership with Information Security—owning readiness and investigation/triage protocols related to privacy, making notification and regulatory reporting decisions across jurisdictions, coordinating regulator engagement, and driving post-incident remediation and lessons learned—serving as the senior escalation point for high-severity matters
  • Own and maintain core GDPR compliance documentation, including Records of Processing Activities (ROPA), Data Protection Impact Assessments (DPIAs), and Lawful Basis assessments and draft and negotiate Data Processing Agreements
  • Partner closely with InfoSec, Product, and Engineering teams to ensure security safeguards, privacy-by-design, and clear roles and responsibilities in incident preparedness
  • Partner closely with the member support function to respond to requests from members for access to or deletion of their data, and assist on (i) regulatory investigations from regulators in the US, UK and EU
  • and (ii) member claims in civil courts, in relation to Bumble’s response to members’ requests
  • Fulltime
Read More
Arrow Right

Senior Corporate Counsel - Privacy

AMD is seeking a Senior Corporate Counsel to support its global privacy program,...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
amd.com Logo
AMD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of legal experience, including significant experience in privacy and data protection law
  • In-house experience at a fast-paced global company, preferably in the technology sector
  • Proven track record of successfully leading and scaling a privacy program across European operations
  • Deep knowledge of GDPR and other European privacy frameworks
  • Demonstrated experience advising on cross-border data transfers and international data governance
  • Familiarity with U.S. privacy concepts and experience coordinating with U.S.-based legal teams
  • Ability to provide pragmatic, risk-based legal advice to business stakeholders and drive intra-company and cross-functional initiatives
  • Strong drafting, communication, and collaboration skills
  • Creative problem-solver with a pragmatic mindset, a good sense of humor, and a positive attitude
  • Bachelor’s and Juris Doctor degree (or equivalent) from a reputed institution
Job Responsibility
Job Responsibility
  • Provide legal advice on European privacy and data protection requirements, including GDPR, ePrivacy, and relevant Member State laws
  • Act as a primary point of contact for European privacy issues, supporting business teams with clear, pragmatic guidance on compliance obligations and risk mitigation
  • Advise on privacy-by-design and privacy-by-default considerations for products, services, AI-enabled technologies, and internal initiatives
  • Support Data Protection Impact Assessments (DPIAs), privacy risk assessments, and related reviews for processing activities
  • Contribute to global privacy governance by drafting, reviewing, and maintaining privacy policies, internal guidance, procedures, and training materials applicable to Europe
  • Partner with information security and incident response teams on data incident preparedness and response, including breach assessment and notification obligations
  • Advise on international data transfers involving European personal data, including the use of Standard Contractual Clauses and Transfer Impact Assessments
  • Review, draft, and negotiate privacy and data protection provisions in commercial agreements, including vendor, customer, cloud, and technology agreements
  • Monitor and assess legislative, regulatory, and enforcement developments across Europe and communicate relevant impacts to internal stakeholders
  • Coordinate closely with U.S.-based and other global legal teams to support consistent, scalable privacy compliance while addressing European requirements
Read More
Arrow Right

Senior Manager, Legal, Privacy & Compl

We are seeking an experienced privacy and compliance professional to lead the Le...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • An experienced privacy compliance professional with deep technical knowledge of global privacy and data protection regulations
  • Confident translating complex regulatory requirements into clear, practical and scalable operational solutions
  • An effective people leader with experience managing and developing large, diverse teams
  • A skilled project and programme leader with a track record of delivering complex initiatives
  • Experienced in driving process optimisation, standardisation and automation
  • Comfortable evaluating and implementing legal, privacy and compliance technology solutions
  • A strong communicator with excellent drafting skills and the ability to engage senior stakeholders across multiple functions
  • Data-literate, with experience using analytics and visualisation tools to support insight-led decision-making
  • Ideally experienced in adjacent risk areas such as financial crime, trade and sanctions, and/or working within a legal or regulated industry environment
Job Responsibility
Job Responsibility
  • Provide expert technical advisory on Privacy, Data Protection and Responsible AI, working closely with the Global Privacy Officer and Lead Privacy Counsel
  • Monitor and interpret regulatory developments, assessing their impact on Vodafone Group and ensuring timely communication to senior stakeholders
  • Define and embed group-wide risk mitigation strategies for new regulations, mergers and acquisitions, joint ventures, products and new business ventures
  • Develop and maintain privacy-related policies, procedures and risk advisories, ensuring effective integration into business operations
  • Continuously simplify, standardise, centralise and automate privacy policies, processes and tools
  • Prepare and support materials for key governance and oversight forums
  • Drive consistent operating models and governance, risk and compliance practices across Cyber, Privacy, Corporate Security and Data Governance, in collaboration with local markets
  • Review KPIs and risk reports from local privacy teams, overseeing mitigation actions and accountability from risk owners
  • Oversee the annual second-line assurance process, providing expert interpretation of privacy regulations and internal controls
  • Manage group-level reporting (including PAM, ARA and CSRD) and analyse key risk indicators for senior governance forums
What we offer
What we offer
  • The opportunity to shape and lead a global privacy and compliance operations capability
  • Exposure to senior governance forums and executive stakeholders across Vodafone Group
  • A role with significant influence on regulatory strategy, risk management and operational transformation
  • The chance to work within a collaborative, international environment focused on innovation and continuous improvement
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel

Location
Location
United States
Salary
Salary:
165000.00 - 275000.00 USD / Year
anaconda.com Logo
Anaconda
Expiration Date
June 20, 2026
Flip Icon
Requirements
Requirements
  • JD and active bar admission in at least one U.S. jurisdiction
  • 8+ years of experience spanning both privacy legal counsel and privacy program operations, with demonstrated ownership across both tracks
  • Proven experience building or meaningfully modernizing a privacy compliance program, including assessing gaps and leading remediation
  • Hands-on operational experience with GDPR and CCPA/CPRA, including running DSARs, managing breach response, and working with sub-processor processes
  • Direct experience using at least one enterprise privacy platform (such as Transcend, OneTrust, or Osano) in daily work, not just overseeing it
  • Working knowledge of AI systems and data practices, sufficient to contribute meaningfully to AI privacy governance and advise on AI vendor contracts
  • Background with B2B or developer-facing products and familiarity with enterprise customer privacy requirements
Job Responsibility
Job Responsibility
  • Own Anaconda's privacy legal function as the primary internal counsel, advising Legal, Product, Engineering, and Commercial teams on GDPR, CCPA/CPRA, and applicable U.S. state privacy laws to keep us compliant and confident
  • Lead privacy operations end to end, including maintaining the data map and ROPAs, running DPIAs, managing DSR escalations and breach response, and directing our external DPO relationship
  • Build and maintain the commercial privacy infrastructure, including DPA positions, negotiation playbooks, and sub-processor notification processes, to support the sales team and enterprise customer requirements
  • Drive privacy-by-design for Anaconda's AI developer platform, contributing to AI governance frameworks, advising on AI vendor contracts, and developing processes to handle AI-generated DSRs
  • Develop and operationalize internal privacy policies on data minimization, retention, and classification, and build training programs that embed privacy awareness across the organization
  • Update and manage external-facing privacy documentation, including the privacy notice, cookie notice, and internal privacy hub, keeping them current as the product and regulatory landscape evolves
What we offer
What we offer
  • Flexible Vacation Policy
  • Medical, Dental, and Vision Insurance
  • Short Term and Long Term Disability
  • Paid Parental Leave
  • Monthly Wellness Stipend
  • Employee Assistance Program and Mental Health Resources
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Experience working as a DPO
  • Experience successfully engaging with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics, including records of processing activities, impact assessments and data retention
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law, including reporting and governance structures
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • A collaborative environment with an opportunity to explore your potential and grow
  • A range of locally relevant benefits
  • Fulltime
Read More
Arrow Right