Counsel, Privacy & Data Protection

Mastercard is committed to balancing innovation while protecting individual privacy and has embraced privacy and data protection as core to the successful execution of its business strategy. As part of that commitment Mastercard has established a world-class privacy program and is currently adding talent to its global team.

The Counsel - Privacy & Data Protection will support both the strategy and the daily operations of the Cyber and Intelligence solutions team, in particular, Identity Solutions. The position will report to Senior Managing Counsel – Cyber and Intelligence Solutions and will be a member of the Privacy and Data Protection team.

Core Responsibilities
The Counsel - Privacy & Data Protection will support the Cyber and Intelligence solutions team to ensure privacy compliance is built into Mastercard data-driven products. Ability to understand complex privacy & data protection laws as well as new technologies, such us biometric technologies and identity verification, and to develop creative legal solutions while ensuring compliance with all privacy and data protection laws globally, including the General Data Protection Regulation. Activities include:

• Ensure that Mastercard Cyber and Intelligence solutions comply with all global, regional and local privacy and data related laws – including the GDPR, the CCPA/CPRA, as well as Mastercard’s Binding Corporate Rules (“BCRs”).
• Negotiate contracts with customers, partners and vendors to ensure compliance with privacy and data protection laws.
• Identify legal, business and technical infrastructure requirements and controls to enable privacy compliance adopting a Privacy by Design process; work with legal, business, technical teams as well as coordinate with external counsel to assist implementation.
• Assist the team to conduct data protection impact assessments where required, and to identify and implement privacy controls and safeguards to remediate risks.
• Engage with the organization to assist in training employees on privacy and data protection requirements, including GBSC employees, handle employee privacy-related queries and raise employee awareness about privacy and data protection developments.

Education and Experience

• Law degree required; specialization in privacy is a plus. Any additional qualifications (e.g. Master of Laws degree, CIPP certifications) are welcome
• Membership to a Bar (if permitted by law)
• Experience in European privacy and data protection law, a must.
• Experience in contract drafting and negotiations of data processing agreements is an asset
  

Competencies:

• Legal mindset is a must;
• Pro-active approach to problem-solving;
• Expertise in and track record dealing with the GDPR;
• Ability to familiarize with privacy legal frameworks in other jurisdictions quickly
• Experience in drafting and negotiation of data processing terms;
• Ability to collaborate with various types of stakeholders (business, lawyers, third parties such as customers and vendors);
• Superior time management, planning, and organizational skills;
• Excellent written and oral communication skills. Attention to detail is a must;
• Exceptional interpersonal skills with proven experience in relationship building and partnering. Must work well in both team and individual settings;
• Familiarity with the financial services industry and biometric and identity technologies, a plus; and,
• Ability to motivate and influence other professionals.

Due to COVID-19, most of our employees are working from home. We’ve implemented a virtual hiring process and continue to interview candidates by phone or video and are onboarding new hires remotely. We value the safety of each member of our community because we know we’re all in this together.

Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.

If you require accommodations or assistance to complete the online application process, please contactreasonable.accommodation@mastercard.comand identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:

• Abide by Mastercard’s security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.