JOB POST: Legal Counsel (Digital and Data Privacy) at Unilever, Mumbai [5 Years PQE]: Apply Now!

Unilever is hiring for the role of Legal Counsel in Digital and Data Privacy Department in Mumbai.

About Unilever

Unilever plc is a British multinational consumer packaged goods company founded on 2 September 1929 following the merger of British soap maker Lever Brothers and Dutch margarine producer Margarine Unie. It is currently headquartered in London.

About the Opportunity

The Legal Counsel is responsible for ensuring that an organization is compliant with data protection laws and upcoming digital regulations.

They will be responsible for the Privacy and governance strategy towards efficient compliance and operations for the organization and will be responsible for implementing policies, procedures, training programs, and infrastructure/ systems to ensure a privacy-by-design approach throughout the organization. 

They would also be responsible for advising and building compliance not only for privacy but also in the areas of cybersecurity, data-driven marketing, digital commerce, media, adoption of technologies like Gen AI, etc.

Roles & Responsibilities

• Advisory on complex legal issues concerning data privacy/data protection, novel technologies, media, digital marketing, digital laws, etc.
• Manage prosecutions and adjudications before authorities and judicial forums around privacy, digital, and TMT regulations.
• Build an understanding of the organization’s data processing activities/platforms/projects, digital ecosystems, and technologies, the operating model, and systems/processes governing the same. More importantly, developing a strong understanding of various processes, and systems around (1) Security/Data protection/Cyber assurances, (2) Privacy Protection/Privacy risk assessments and other related compliances (3) Third Party/Data Processor Risk Management.
• Continued assessment of organization systems and processes, their gaps, and necessary enhancements toward best industry standard compliance.
• Conduct Privacy Risk/Impact Assessments for projects/activities/platforms, including risk mitigation, creating privacy notices/policies, consent statements, etc.


• Contract Drafting, Negotiation, and Standardization for Privacy, Data Processing and Protection, Media, Technology Services, etc.
• Develop and implement Data Privacy and Protection policies, processes, and SOPs to ensure compliance with data protection laws and regulations.
• Monitor and review the organization’s data processing and protection practices and work towards improvements. Work with Governance, IT, Security, and Procurement teams to mitigate third-party risks, ensure that data protection measures are in place and effective, investigate data incidents, etc.
• Develop and deliver training programs to build a culture of privacy across our value chain, including third parties around privacy, digital regulations, etc.
• Investigate and report data breaches to the appropriate authorities.
• Keep up to date with changes in data protection laws and regulations and advise the organization accordingly.
• Engage with the Central Privacy Team on updating policies and procedures at a local level, setting the local content for Privacy training, collaborating on Global/Local privacy programs/projects, high-risk processes/activities being highlighted, leveraging their expertise, etc.
• Developing an efficient Data Principal access and grievance redressal mechanism and managing the same.
• Standardization of processes, and agreements to bring efficiency to compliance in our digital ecosystem and use of data, technologies, etc.
• Act as the point of contact for regulatory authorities on data protection matters.


• Leading Advocacy directly and through industry associations on Privacy and Digital ecosystem regulations.

Eligibility

• Law degree from a reputable institute in India or abroad.
• Keen interest and understanding of technology, digital ecosystem, etc.
• Strong knowledge of Indian and Global Privacy Regulatory Landscape and Frameworks. Awareness of the legal and implementation landscape of developed jurisdictions with stronger/older privacy legal frameworks.
• Robust knowledge and Experience/Involvement in advisory, strategy, and implementation of Data Privacy, Data Protection, and Governance Programs and Compliances.
• Experience in regulatory advisory, compliance, and contracting in the area of cyber laws, digital ecosystem/ technology regulatory landscape, and TMT, particularly assessing and advising novel technologies and ecosystems with a digital approach.
• At least 5+ years with reputed companies, Big 4s, a law firm with experience.
• Additional qualifications in information technology, Privacy (CIPP, CIPM, CIPT, etc.), cyber security, IT infrastructure and operations, and programming would be considered beneficial.
• Excellent communication and interpersonal skills, particularly in leading senior management discussions.
• Strong analytical and problem-solving skills.
• Ability to work/execute independently and as part of multiple cross-functional teams in a fast-paced environment.
• Project Management Skills.

How to Apply?

Interested individuals may apply through the link provided at the end of the post.

Location

Mumbai

Click here to apply.

Click here for the official notification.

Source: Lawctopus