Zillow Group’s Legal & Compliance is a team of skilled professionals and fun people who enjoy working an environment within an innovative, fast-paced tech, real estate, and media company!

About the role

Our team is looking for a driven, creative privacy and data security attorney with the experience to help guide a dynamic, varied organization through its next phase of growth. This lawyer works hand-in-hand with the compliance team in support of Zillow’s Privacy program. This role will provide counseling and guidance on how Zillow collects and use of personal data; advise on security incident response; review contracts; and be one of the leaders for ensuring the company follows all applicable privacy laws.

In this role, you will be the legal support for Zillow’s Privacy program, closely collaborating with members of the Privacy Compliance team as you:

Counsel clients within and outside of Legal on the privacy implications of existing and proposed services, products, and other customer offerings.
Work with Privacy compliance and business clients to develop solutions and achieve business goals while incorporating privacy concepts such as transparency, accountability, and individual choice.
Review customer-facing services, offerings, projects, products, and initiatives, to incorporate Privacy by Design principles into Zillow’s product development process.
Partner with Privacy Compliance and Information Security on issues such as incident response, policy development, and implementation of security tools and processes.
Collaborate with, support, and educate key business team members on data privacy expectations during product development and improvement cycles.
Draft and negotiate vendor and partner contract provisions related to the collection, processing, and sharing of personal information.
Support the Privacy Compliance team’s Privacy Impact Assessments.
Support the development and refining of governance documentation and Regulatory Change Management by providing support and guidance on implementation of appropriate business processes and controls.
Advise the Privacy Program and Privacy Engineering on Zillow’s Data Subject Access Request processes.
Monitor changes to laws, regulatory expectations, and enforcement trends, and collaborate with Government Relations to assess their effect on Zillow’s business.
Maintain subject matter expertise of applicable laws and regulations such as FCRA, FACTA, TCPA, TSR, CAN-SPAM, GLBA, HIPAA, and state-level privacy laws such as the CPRA. Familiarity and experience with international privacy laws, including PIPEDA, CASL, and GDPR, is a plus.
Develop guidance, training, and thought leadership as needed for internal audiences.
Build and maintain strong and collaborative relationships with internal and external collaborators.

This role has been categorized as a Remote position. “Remote” employees do not have a permanent corporate office workplace and, instead, work from a physical location of their choice which must be identified to the Company. Employees may live in any of the 50 US States, with limited exceptions. In certain cases, an employee in a remote-designated job may need to live in a specific region or time zone to support customers or clients as part of their role.

In Colorado, Connecticut, Nevada and New York City the standard base pay range for this role is $147,800.00 - $236,200.00 Annually. This base pay range is specific to Colorado, Connecticut, Nevada and New York City and may not be applicable to other locations.

In addition to a competitive base salary this position is also eligible for equity awards based on factors such as experience, performance and location. Actual amounts will vary depending on experience, performance and location.

Who you are

Proven expertise in advising business clients regarding data privacy and security issues, and a dedication to developing solutions for business clients.
Deep understanding of how the legal landscape affects business processes, and the role in-house counsel plays in helping business clients achieve their goals.
Experience drafting and negotiating contract terms relating to data collection and processing and collaborating with transactional teams to successfully complete deals.
Ability to operate independently and own your work.
Track record of forming and maintaining strong partner relationships.
Experience in monitoring privacy trends and developments and translating them into practical guidance or requirements.
Effectiveness in a remote work environment through self-motivation, clear communication, and management of your workload and schedule.
Strong project management and organizational skills, and a working technical knowledge of data systems.

Your Qualifications:

The ideal candidate will possess a JD with a minimum seven years of legal experience in data privacy and cybersecurity (including four years in an in-house role), admitted in the state of residence with active bar license, in good standing, and up to date with current CLE requirements. CIPP certification is a major plus.

Similar Opportunities