Associate Counsel, Privacy - Code.org
Seattle, WA
About the Job
COMPANY PROFILE
Code.org® is a nonprofit dedicated to expanding access to computer science in K-12 schools and increasing participation by young women and students from other underrepresented groups. Our vision is that every student in every school has the opportunity to learn computer science as part K-12. The leading provider of K-12 computer science solutions in the largest school districts in the United States, Code.org also created the annual Hour of Code campaign, which has engaged more than 15% of all students in the world!
JOB SUMMARY
Code.org is looking for an Associate Counsel, Privacy with significant data privacy and security experience in an online product-focused environment; meaningful experience with US and international privacy (e.g., GDPR) and/or K-12 education technology are strongly preferred.
In this role, you will lead Code.org's privacy work to ensure we comply with all applicable domestic and international legislation (e.g., student privacy, donor privacy, etc.) and regulatory requirements and support the organization's data security team. Additionally, you will manage Code.org's day-to-day legal needs by providing strategic advice and guidance on a variety of legal issues, such as service provider reviews, contract negotiations, and legislative analysis. As the sole in-house legal role, this is a hands-on position with high visibility and interaction across Code.org teams.
DUTIES AND RESPONSIBILITIES
In this role you will:
- Work closely with internal Code.org stakeholders (leadership, product, education, engineering, and security teams) to develop and maintain Code.org's approach to state, federal, and international data privacy and security laws and regulations governing the collection, storage, transmission, and usage of user data (with an emphasis on K-12 education and educational technology products)
- Obtain a deep working knowledge of Code.org education platform operations and apply that knowledge to support product design and to advocate and negotiate privacy/data protection agreements with external parties
- Create and maintain internal and public-facing privacy policies and operating procedures
- Monitor global privacy trends and legislative/regulatory activity in the privacy and data arena
- Communicate with the product, education, and engineering/security teams to assess the impact of new privacy and security laws and regulations
- Provide advice to leadership and relevant internal teams to mitigate data privacy risks, incorporate privacy-by-design and privacy-by-default principles, and ensure alignment with applicable legal requirements and data protection policies and best practices
- Provide legal expertise and advice on a variety of matters, liaising with Code.org's General Counsel (external firm) as needed
- Develop, review, and negotiate Code.org contracts, including donor agreements, service provider agreements, contractor and partnership agreements, data privacy agreements, and licensing agreements
- Track and manage contracts
- Respond to inbound privacy, security, and data-related legal questions
- Provide mandatory staff training and education resources on relevant privacy and security issues and practices
- Maintain and expand Code.org's Trademark inventory in coordination with outside counsel
- Manage key relationships and represent Code.org's interests in the student data privacy community
EXPERIENCE & QUALIFICATIONS
We seek candidates who have:
- A JD degree and a U.S. state bar membership in good standing
- A minimum of 5 years of combined experience as an attorney (law firm, government, in-house) with a practice emphasis on data privacy and security
- CIPP(US) privacy certification
- Demonstrated experience in evaluating and balancing legal and business risks and providing actionable legal and risk mitigation advice in a fast-paced, ambiguous, informal work environment
- Demonstrated ability to clearly and succinctly explain legal issues to non-legal audiences
- Demonstrated experience driving, prioritizing, and effectively managing cross-functional initiatives, and an ability to work both independently and with multi-stakeholder teams
- Demonstrated experience with contract negotiation and drafting
- Working knowledge (through practice in previous roles) of key data privacy laws and concepts, including FERPA and state student privacy laws, COPPA, CCPA/CPRA and other generally applicable state privacy laws, FTC Act, and GDPR
- Experience with, or willingness to quickly learn, the student data privacy and K-12 education technology privacy environment
- Excellent communication skills and strong attention to detail
- Exemplary personal and professional integrity, sound and practical business judgment, and strong ethical compass; exercises discretion and maintains confidentiality of sensitive information.
We prefer candidates who also have:
- Privacy program management experience
- CIPP(EU) privacy certification
- Significant experience with international data privacy issues (including with GDPR data processing agreements and cross-border transfers)
- Significant experience in an online product focused environment
- Significant experience in the K-12 education technology space
In addition, candidates must:
- Be a U.S. Citizen or Permanent Resident
- Be located in the United States
- Pass a pre-employment background check
- Be willing to travel a minimum of two times per year for team events
WHAT IS THE INTERVIEW PROCESS LIKE?
Step 1: Informational Interview - learn more about the role and share your experience (30 minutes)
Step 2: Homework (~3 hours)
Step 3: Interviews with several members of the Code.org team (~3 hours)
Step 4: Final Interview (1 hour)
Step 5: Reference Checks
All interviews are currently being conducted virtually via Zoom
TO APPLY
Our team will review all applications on an ongoing basis and if we believe your qualifications would make a great fit, we'll contact you to schedule an informational interview.
COMPENSATION & BENEFITS PACKAGE
The expected salary range for this position is $125,100 - $139,000. Most offers are on the lower end of the salary range and are at the company's sole discretion based on the final candidate's experience. This allows us to provide a fair and equitable approach to compensation when setting pay and maintaining internal pay equity.
We also offer a comprehensive benefits package for full-time employees that includes:
- Technology subsidy consistent with our Bring Your Own Device environment
- Flexible, engaging, and remote working environment
- Paid time off: 3 weeks vacation annually, sick leave, and 'winter break' office closure the two weeks that include Christmas and New Years
- Medical, dental and vision premiums paid at 100% for FT positions and their dependents
- Option to participate in 403b retirement plan
- Annual professional development stipend
- The opportunity to help students learn better and change the face of computer science
A unifying approach in a divided world
Code.org's global role in the K-12 computer science movement is only possible because we use a unifying approach across diverse and often divided stakeholders. At a time of increasing polarization, the idea of increasing opportunity for students unites people from across the political spectrum. Code.org's team members, students, teachers, and supporters have diverse and diverging view points, and they are all welcome in our mission. Read more.
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.