Mastercard Jobs

Job Information

MasterCard Counsel - Privacy & Data Protection in Copenhagen, Denmark

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion (https://www.mastercard.us/en-us/vision/who-we-are/diversity-inclusion.html) for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Job Title

Counsel - Privacy & Data Protection

Overview

Mastercard is committed to balancing innovation while protecting individual privacy and has embraced privacy and data protection as core to the successful execution of its business strategy. As part of that commitment Mastercard has established a world-class privacy program and is currently adding talent to its global team.

The Counsel - Privacy & Data Protection will drive building privacy best practices into Mastercard data-driven products. The position requires the ability to understand new and complex data-related and privacy & data protection laws as well as new technologies, and assess end-to-end consent management requirements (e.g. identity management, data sharing regulations, open banking, etc.). The position will report to Senior Counsel, Head of Europe DPO Office, and will be a member of the Privacy and Data Protection team as well as a member of the Law & Franchise Integrity (LFI) team.

Role

This role will be responsible for enabling consumer transparency and control related to individual’s rights beyond GDPR globally, e.g. by defining the standards by which consent is captured, managed, exchanged and audited between parties and developing solutions to drive adoption of these standards across the payment’s ecosystem. The Counsel must have excellent understanding of individual rights, data portability and consent requirements, whilst having a process driven attitude and ease to communicate with stakeholders globally written and verbally both internally and externally.

Activities include:

• Develop and refine Mastercard requirements and needs across the organization for consumer transparency and control and consent management, taking into account product, platform and regulatory needs in key geographies

• Advise on and identify legal, business and technical infrastructure requirements and controls to enable privacy compliance; work with legal, business, technical teams as well as coordinate with external counsel to ensure implementation and timely compliance

• Evaluate market and privacy technology trends and evolutions and research privacy-enhancing technologies and assist Mastercard Operations and Technology teams with the validation of consent technology controls.

• Work closely together with the Mastercard Privacy Engineering team and the Global Operations and Technology teams across the globe.

• Work internally and externally with associations and working groups to socialize the product capabilities being developed to ensure product capabilities resonate with the market, are clear and understandable to the consumer and meet the needs and requirements of potential customers

• Help manage the day-to-day operations of the Global Privacy Program and DPO Office, and ensure individuals’ and regulators’ privacy expectations are met, in particular, by managing global data subject requests and complaints regarding consent management.

• Management and assist with communications with data subjects, regulators, customers, partners and vendors to explain Mastercard’s approach to consent management and ensure compliance with global privacy and data protection laws

• Educate privacy attorneys, business teams, and technical teams on advanced privacy engineering requirements and develop and create guidelines to streamline Privacy by Design and other processes on consent management.

All About You

• Law degree required; specialization in privacy

• Membership to a Bar (if permitted by law)

• Additional qualifications e.g. Master of Laws degree, IT certifications, CIPM, CIPP/US, CIPP/E, considered as an asset

• Experience advising on technology infrastructure and building products and services with an existing, sample portfolio of written product summaries, detailed data flows, and/or similar documents.

• Relevant experience in identity management, digital identity, open banking, or payments industry a plus

The ideal candidate for this position should have:

• Legal and analytical mindset

• Strong command of technology, software, analytics, and/or engineering, including software development

• Pro-active approach and solution driven attitude to privacy compliance to problem-solving; ability to operationalize privacy requirements in a practical manner

• Understanding of complex data systems in order to identify data compliance requirements including Ability to familiarize with new privacy and data driven laws and requirements quickly

• Experience with and excellent understanding of individuals’ data privacy rights and expectations

• Ability to collaborate with various types of stakeholders (business, lawyers, third parties such as customers and vendors and regulators)

• Familiarity with technical documentation and capacity to develop functional requirements from new business ideas and emerging legal concepts

• Exceptional interpersonal skills with proven experience in relationship building and partnering. Must work well in both team and individual settings

• Familiarity with the financial services industry and identity management industry, a plus

• Ability to motivate and influence other professionals

COVID-19 Considerations

We value the safety of each member of our community because we know we’re all in this together. In many locations, which may change over time, we’ve implemented a virtual hiring process and continue to interview candidates by video or phone. In addition, in some locations, only individuals who have been fully vaccinated will be permitted inside Mastercard offices until further notice.

In the US, Mastercard is a government contractor, which may legally require most Mastercard employees to be vaccinated unless a verified approved medical or religious exemption is granted. Further, we are currently making every effort towards having employees return to work in the office 2 days per week, if that makes sense for their team. Everyone must be vaccinated to enter Mastercard offices at this time. Therefore, we expect all candidates to be vaccinated or to be approved for a medical or religious accommodation prior to commencing work at Mastercard.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

COVID-19 Considerations

We value the safety of each member of our community because we know we’re all in this together. In many locations, which may change over time, we’ve implemented a virtual hiring process and continue to interview candidates by video or phone. In addition, in some locations, only individuals who have been fully vaccinated will be permitted inside Mastercard offices until further notice.

In the US, Mastercard is a government contractor, which may legally require most Mastercard employees to be vaccinated unless a verified approved medical or religious exemption is granted. Further, we are currently making every effort towards having employees return to work in the office 2 days per week, if that makes sense for their team. Everyone must be vaccinated to enter Mastercard offices at this time. Therefore, we expect all candidates to be vaccinated or to be approved for a medical or religious accommodation prior to commencing work at Mastercard.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

  • Abide by Mastercard’s security policies and practices;

  • Ensure the confidentiality and integrity of the information being accessed;

  • Report any suspected information security violation or breach, and

  • Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

Requisition ID: R-160871

DirectEmployers