The Senior Privacy lawyer will be part of the Product Technology and Law/Privacy Group. The lawyer will handle a wide range of privacy-related matters and contributing to our ongoing mission to create a world-class privacy and security legal organization for VMware.
Serve as Senior legal counsel on data protection and privacy matters.Advise the business on legal compliance requirements applicable to the privacy and management of the personal information of customers, employees and other individuals with whom the company interacts and related confidential personal information. Support the maintenance of a global corporate data privacy program and compliance standards working in close collaboration with the wider Data Privacy Office team. Provide guidance, support and leadership on privacy and data protection legislation and regulation in Europe particularly the GDPR. Conduct risk assessments and provide data protection advice on third party data processors and vendor transactions and new programs applicable to Europe business. Conduct data privacy risk assessments of products and service offerings.Assess the impact of new and existing regulations or laws on existing operations and offerings; providing advice to the Technology, Product and other relevant business teams to foster privacy by design and alignment with applicable legal requirements and corporate data protection policies and standards. Advise on the requirements and restrictions for international transfer of personal data and its contracting parties in the context of European data processing and information transfers, including the use of mechanisms such as BCRs and Privacy Shield. Provide guidance and advice on appropriate data protection terms for vendors, supplier, customer and employee agreements, as well as RFP's, bids, and strategic business partnerships. Collaborate with and support other lawyers with respect to legal forms, agreements, policies and notices in order to protect commercial and legal position in relation to data privacy requirements. Support critical incident management processes in addressing suspected or actual data privacy and security incidents. Provide advice concerning requests for access to personal information. Provide training and education to legal staff, management and employees relating to data privacy and protection in Europe, including key legal issues, laws and regulations, corporate policies and other relevant matters.