Privacy Counsel
CurrentManage Privacy program for PandaDoc Product and business. Advise Product, Senior Management, Marketing and Sales on applicable global privacy and security laws, regulatory compliance, data protection and security processes to ensure compliance with all laws and regulations related to PandaDoc’s products and vendor relationships.-Provided legal and compliance guidance for data residency framework of new instance of software hosted in the EU-Draft, review and negotiate all vendor and commercial Data Processing Agreements (DPA), including Standard Contractual Clauses (SCCs), Technical and Organizational Measures, Transfer Impact Assessments and Records and ROPAs. Manage Data Protection Framework (DPF) and transition from Privacy Shield participation.-Product counseling on workflows for new functionalities such as incorporating AI into the software, third-party bots, beta trials- Draft and Update Privacy Notice, including 2023 CPRA updates- Developed and implemented framework for GDPR, CPPA/CPRA, VCDPA Compliance: Manage GDPR compliance, prepare organization for CPRA and VCDPA compliance including updating HR documentation, developing a privacy portal, data classification - Cross-functionally implemented the OneTrust Privacy Module for the entire corporation including the Cookie Banner, Data Mapping, Data Subject Request procedure along with the online interface. Weekly management of Privacy Rights requests from customers and employees and ongoing internal owner.- Negotiate or advise on privacy and data security terms- IT Steering Commitee member and SOC2 Type II team member and Legal representative