Skip to main content
Back to jobs

Privacy Compliance Counsel

External
reflectionai logoReflectionai · NY
Full-timeOn-site1mo ago
ComplianceGDPRIncident ResponseLLMsMachine Learning
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role

Responsibilities

  • Privacy Program Architecture & Management
  • Design, implement, and oversee a comprehensive global privacy program that aligns with GDPR, CCPA/CPRA, and emerging AI-specific regulations (e.g., EU AI Act).
  • Program manage the lifecycle of compliance initiatives, including data mapping, Records of Processing Activities (RoPA), and Data Protection Impact Assessments (DPIAs).
  • Draft and maintain internal and external-facing policies, including Privacy Notices, Data Retention policies, and Employee Privacy Handbooks.
  • Product Counseling, Strategic Advice, and Go-to-Market Support
  • Act as the primary legal partner for product and engineering teams, providing real-time advice on data ingestion, model training, and feature launches.
  • Navigate the intersection of privacy law and AI ethics, advising on bias mitigation, data provenance, and the legal implications of synthetic data.
  • Manage the privacy aspects of vendor relationships, including drafting and negotiating Data Processing Agreements (DPAs).
  • Operational Response & Rights Management
  • Develop, execute and deploy tooling to automate processes to triage and fulfill Data Subject Access Requests (DSARs) and deletion requests.
  • Act as lead legal partner for, and contribute to the policies and processes for, the Privacy Incident Response Team (PIRT), including the development of "battle cards" for data breaches and table-top exercises for company readiness.
  • Global Compliance & Regulatory Tracking
  • Monitor the global regulatory landscape to anticipate shifts in privacy laws, ensuring the company remains ahead of the curve.

Requirements

  • 7+ years of legal experience, with at least 4 years focused on privacy and data protection, to include familiarity with relevant state-level privacy laws, and international frameworks like GDPR and/or Korea's PIPA.
  • J.D. from an accredited law school and active membership in at least one U.S. State Bar.
  • A strong understanding of how LLMs or machine learning models work. You don't need to code, but you must be able to speak the language of engineers.
  • Experience leading cross-functional projects or managing a privacy legal function; comfort moving between "individual contributor" tasks and "project lead" responsibilities.
  • Comfort working with technical systems, configs, and dashboards.
  • Previous people management and/or experience building teams.
  • CIPP/US, CIPP/E, and/or CIPM are highly preferred.
  • Previous experience at an AI lab or model developer.
  • Tactical experience building compliance frameworks under relevant state privacy laws and international regulations like the EU and UK GDPR and/or Korea's PIPA.
  • Experience at a startup or fast-moving engineering team

Benefits

We believe that to build superintelligence that is truly open, you need to start at the foundation. Joining Reflection means building from the ground up as part of a small talent-dense team. You will help define our future as a company, and help define the frontier of open foundational models.We want you to do the most impactful work of your career with the confidence that you and the people you care about most are supported.Top-tier compensation: Salary and equity structured to recognize and retain the best talent globally.Health & wellness: Comprehensive medical, dental, vision, life, and disability insurance.Life & family: Fully paid parental leave for all new parents, including adoptive and surrogate journeys. Financial support for family planning.Benefits & balance: paid time off when you need it, relocation support, and more perks that optimize your time.Opportunities to connect with teammates: lunch and dinner are provided daily. We have regular off-sites and team celebrations.Health insuranceDental insuranceVision insuranceEquity / stock optionsParental leave

Additional Information

Our Mission Reflection's mission is to build open superintelligence and make it accessible to all . We're developing open weight models for individuals, agents, enterprises, and even nation states. Our team of AI researchers and company builders come from DeepMind, OpenAI, Google Brain, Meta, Character.AI, Anthropic and beyond. Role Overview: We are seeking a Legal Privacy and Compliance Lead to develop and implement Reflection AI's global privacy framework. This isn't just a "check-the-box" compliance role. You will work at the frontier of AI law, translating complex global regulations into actionable product roadmaps. You will be a strategic partner to cross-functional teams across a hyper-scaling AI lab, ensuring our frontier open foundation models are built with a "privacy-by-design" philosophy that scales. You'll work closely with our product, research, engineering and safety teams, as well as other business operations and compliance units to develop, implement and execute a comprehensive global privacy program, and build workable privacy controls that balance innovation and development with responsible data practices.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at reflectionai? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect