Description:

About the role:
An American Telehealth Company is seeking a highly motivated and experienced Privacy Counsel to join our dynamic and collaborative Legal team. In this pivotal role, you will provide practical and strategic legal guidance across the company on matters related to privacy, data protection, and healthcare regulations. You will be instrumental in developing and scaling our privacy program as we continue to innovate at the intersection of healthcare, technology, and consumer products.

You'll work cross-functionally with teams in product, marketing, engineering, security, and compliance to ensure our data practices and digital health offerings align with evolving legal frameworks and privacy expectations. This is a fantastic opportunity for a privacy-minded attorney who thrives in a mission-driven, fast-paced environment and is excited to help shape the future of consumer healthcare.

You Will:

Serve as a subject matter expert on U.S. and international privacy laws (including CCPA/CPRA, GDPR, HIPAA, and others) and apply your expertise across all business functions.
Lead privacy-related legal reviews of products and features, ensuring privacy-by-design principles are integrated early in the development process.
Provide actionable guidance on data subject rights, consumer consent management, data minimization, and retention practices.
Support privacy impact assessments, vendor due diligence, and data protection agreements.
Partner with the marketing and product teams on advertising technologies, analytics, and the use of customer data in a compliant manner.
Work closely with compliance, information security, and engineering to align legal requirements with operational controls.
Collaborate with the Public Policy team to evaluate proposed privacy laws and support the company's advocacy efforts.
Help investigate and respond to privacy incidents and regulatory inquiries, and assist in ongoing development of incident response protocols.
Monitor legal and regulatory developments in privacy and data protection and translate them into clear, business-friendly guidance.

You Have:

J.D. from an ABA-accredited law school and active license to practice in at least one U.S. jurisdiction.
8+ years of experience advising on privacy and data protection issues at a top law firm or in-house legal department.
Expertise in consumer privacy laws (e.g., CCPA/CPRA, GDPR) and preferably healthcare privacy frameworks (e.g., HIPAA).
A strong track record of building relationships across product, marketing, engineering, and compliance teams to provide strategic and practical counsel.
Experience with privacy risk assessments, privacy policies and notices, and incident response planning.
Excellent legal judgment, problem-solving skills, and the ability to make complex legal concepts accessible to non-legal audiences.
Comfortable working in a fast-paced, high-growth environment with shifting priorities.
Preferred: CIPP/US or CIPP/E certification, experience in health tech, digital health, or telehealth environments.

Preferred Skills:

Prior experience in a healthcare, telehealth, or consumer-facing company is highly desirable.
Familiarity with California employment law and other state-specific employment regulations.
Working knowledge of case management systems, timekeeping systems, and tools for data privacy and compliance.
Experience supporting internal HR or compliance investigations.
Ability to work cross-functionally with People, Compliance, IT, and Security teams.