Description:
ImpactAs a Corporate Counsel, Privacy & AI located in San Francisco, CA, Minneapolis MN or Birmingham, AL you will be responsible for supporting Privacy, Cybersecurity, and Artificial Intelligence initiatives in a highly collaborative, product-driven environment. You will serve as an individual contributor working day-to-day with Product, Engineering, Security, and Data teams to ensure compliance and thoughtfulness in building and deploying features.
While no two days are the same, you will spend a meaningful portion of your time on core privacy works such as product reviews, data use questions, and vendor assessments—while enabling responsible AI adoption. You will advise on privacy by design for new features, manage Privacy Impact Assessments (PIAs), and support incident response and breach analysis. You will collaborate cross-functionally with Security teams on risk assessments and partner with Product and Data teams to support the development of AI-enabled features and governance frameworks.
What You'll Need to Be Successful
Skills & Education
This list includes key skills used in this job but is not inclusive of all skills needed for the role. Please see any required education below.
AI Governance, Data Governance, General Data Protection Regulation (GDPR), Legal Practices, Taking Initiative
Work Arrangement
Shipt considers candidates located near a Shipt office or workspace in Birmingham, San Francisco, or Minneapolis to be hybrid, which means that they have the flexibility to work from home (with leader approval) or at a Shipt office in order to facilitate the ability to innovate, collaborate, and spark team connections. In-office expectations will vary by role and leader. Certain roles may require in-office presence on a full-time basis. Please work with your recruiter to learn more about the classification of this role.
- You have a J.D. from an accredited law school and active membership in at least one U.S. state bar.
- You have 6+ years of legal experience, including at least 4 years focused on privacy, cybersecurity, data protection, or emerging technology law.
- You have experience working closely with product, engineering, or technical teams in a fast-paced environment.
- You have strong working knowledge of U.S. privacy laws (CCPA/CPRA, HIPAA, TCPA) and familiarity with international frameworks such as GDPR.
- You have the ability to deliver clear, practical, business-first legal guidance to non-legal partners.
- You have technical fluency with software development lifecycles, cloud platforms, APIs, and foundational AI/ML concepts.
- You have a background in retail, delivery, e-commerce, marketplaces, or AdTech.
- You have Privacy or AI governance certifications (e.g., CIPP/US, CIPP/E, AIGP).
This list includes key skills used in this job but is not inclusive of all skills needed for the role. Please see any required education below.
AI Governance, Data Governance, General Data Protection Regulation (GDPR), Legal Practices, Taking Initiative
Work Arrangement
Shipt considers candidates located near a Shipt office or workspace in Birmingham, San Francisco, or Minneapolis to be hybrid, which means that they have the flexibility to work from home (with leader approval) or at a Shipt office in order to facilitate the ability to innovate, collaborate, and spark team connections. In-office expectations will vary by role and leader. Certain roles may require in-office presence on a full-time basis. Please work with your recruiter to learn more about the classification of this role.
