Senior Privacy Counsel, Americas

WHO WE ARE At Trustly, we're building a smarter, faster, and more secure financial future by revolutionizing the world of payments. As a global leader in Open Banking Payments, we are establishing Pay by Bank as the new standard at checkout, providing unparalleled freedom, speed, and ease to millions of consumers and merchants worldwide. Our Ambition: To build the world’s most disruptive payment network and redefine what the payment experience should feel like. Trustly is a global team of innovators, collaborators, and doers.  If you are driven by a strong sense of purpose and thrive in a dynamic, entrepreneurial, and high-growth environment, join us and be part of a team that’s transforming the way the world pays. ABOUT THE ROLE We are seeking an experienced Senior Privacy Counsel with a FinTech background to join our global Legal, Regulatory & Compliance team. Reporting to the Global Head of Privacy & DPO, you will serve as Trustly's specialist privacy adviser for the Americas region (US, Canada and Brazil), working as a subject matter expert on complex privacy matters. This role requires deep expertise in US privacy laws and regulations, with working knowledge of Canadian and Brazilian frameworks, and proven experience navigating complex consumer-facing technology environments in FinTech companies. You will be part of Trustly's global Privacy & DPO team, leading the development and implementation of privacy strategies tailored to the Americas region. You will be an exceptional strategic thinker and pragmatic adviser with practical problem-solving abilities, who thrives on navigating the complex and rapidly evolving privacy landscape. Applications for this role are accepted on an ongoing basis. Remote; U.S. Eastern or Central time zones preferred for collaboration with our global hubs. SALARY RANGES IN US-BASED ROLE POSTING Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Recruiters can share more information with applicants about the specific salary range for preferred locations during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include other perks and benefits. WHAT WE OFFER At Trustly, you will have the chance to solve meaningful challenges alongside some of the brightest minds in FinTech. Together, we are shaping the future of payments in an environment that celebrates curiosity, collaboration, and innovation. You will be challenged and empowered to grow, making a real impact every step of the way. Our team is as diverse as the global footprint we serve, with colleagues across Silicon Valley, the U.S., Canada, Brazil, Europe, and beyond.  At Trustly, we foster a workplace where everyone feels they belong—a place where teamwork thrives, ideas flourish, and we never forget to have fun along the way. We offer innovative perks and benefits packages that include: - Flexible paid time off & generous PTO accrual plans - Comprehensive medical, dental, vision, and other insurances - FSA & HSA plans for medical and dependent care - Home office set-up allowance - Internet stipend - Retirement plan match for 401k and RRSP - Gender-neutral paid parental leave, and more! (The benefits and total compensation packages outlined above are for full-time employees; some exclusions apply for temporary positions.) At Trustly, we embrace and celebrate diversity of all forms and the value it brings to our employees and customers. We are proud and committed to being an Equal Opportunity Employer and believe an open and inclusive environment enables people to do their best work.  All decisions regarding hiring, advancement, and any other aspects of employment are made solely on the basis of qualifications, merit, and business need. WHAT YOU'LL DO Work closely with Product Counsel across the Americas region, serving as the specialist privacy resource to be engaged on complex privacy matters, regulatory queries, and high-risk data processing activities. Develop and execute Trustly's privacy and data protection strategy for the Americas region, ensuring compliance with US federal and state privacy laws (CCPA, state privacy laws), Canadian privacy laws (PIPEDA, Quebec Law 25), and Brazilian privacy law (LGPD). Provide specialist, in-depth privacy advice, ensuring complex privacy issues are resolved effectively. In collaboration with the wider Privacy & DPO Team, implement and adapt Trustly's global privacy framework to ensure compliance with US, Canadian, and Brazilian requirements. Conduct and oversee privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new products, services, features, and business initiatives. Provide specialist privacy by design guidance to embed into product and engineering workstreams as required. Manage data subject rights requests and handle data disclosure requests from federal law enforcement agencies, ensuring timely and compliant responses. Lead privacy breach preparedness and incident response efforts for the Americas region, including developing incident response plans, coordinating breach investigations, and managing regulatory notifications. Monitor legislative and regulatory developments affecting privacy and data protection in the Americas, providing timely analysis and recommendations to senior leadership. In collaboration with the DPO, manage engagements with privacy regulators in the Americas, including US state attorneys general offices, federal agencies, the Office of the Privacy Commissioner of Canada (OPC), and the Brazilian National Data Protection Authority (ANPD). Collaborate closely with the global Privacy & DPO team to ensure alignment on privacy strategies, share best practices, and coordinate cross-regional privacy initiatives. Develop and maintain privacy documentation, including data inventories, records of processing activities, and privacy compliance registers. WHO YOU ARE Juris Doctor (JD) degree from an accredited law school and active bar admission in at least one US jurisdiction, with 7-10 years of experience as a privacy lawyer at a technology company, including strong training at a reputable law firm. Proven experience in a consumer-facing environment, with deep understanding of consumer privacy expectations and regulatory requirements in the FinTech or payment services sector. Experience working as part of a global privacy team, with proven ability to collaborate effectively across multiple jurisdictions and time zones. Deep expertise in US privacy laws and regulations, including CCPA/CPRA, all major state privacy laws, and federal sector-specific regulations such as GLBA and FCRA, with the ability to advise on novel and complex US privacy issues without external support. Working knowledge of Canadian privacy laws (including PIPEDA and provincial privacy laws such as Quebec Law 25) and Brazilian privacy law (LGPD), sufficient to identify issues and engage local counsel where needed. Experience handling data subject rights requests and data disclosure requests from federal law enforcement agencies. Experience implementing privacy by design principles and working closely with Product and Engineering teams to embed privacy into technology development, with excellent legal drafting skills for privacy policies, notices, consent mechanisms, and data processing agreements. Entrepreneurial and creative by nature with a bias for action, strong project management skills to manage multiple complex privacy initiatives simultaneously, and proven ability to provide practical, business-oriented privacy advice that balances legal compliance with business objectives. Exceptional interpersonal and communication skills with the ability to explain complex legal issues in simple terms, strong understanding of international privacy frameworks including GDPR, and experience advising on cross-border data transfers. Relevant professional privacy certifications (e.g., CIPP/US, CIPP/C, CIPM, CIPT) are highly desirable. Willingness to work flexible hours to collaborate with global privacy team members across different time zones and travel occasionally for meetings.

{
  "content_hash": "c98db6205f16d836a54d7a2741dc2b86617e37d66a74f8f32cc3ac345b072041",
  "source_hash": "6775620651e6e944d4d3137460ce7bdd518728d2e091944b729fce76d750ad96",
  "last_changed_at": "2026-05-29T07:01:30.570Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "New York, NY",
    "city": "New York",
    "region": "NY",
    "country": "United States",
    "is_remote": false,
    "confidence": 0.9
  },
  "salary_max": 300000,
  "salary_min": 230000,
  "inferred_at": "2026-06-06T07:56:51.072Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "New York, NY",
      "city": "New York",
      "region": "NY",
      "country": "United States",
      "is_remote": false,
      "confidence": 0.9
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": "hybrid",
  "salary_period": "year",
  "workplace_type": "hybrid",
  "salary_currency": "USD"
}

{}

{
  "lists": [
    {
      "text": "WHAT YOU'LL DO",
      "content": "\n<li>Work closely with Product Counsel across the Americas region, serving as the specialist privacy resource to be engaged on complex privacy matters, regulatory queries, and high-risk data processing activities.</li>\n<li>Develop and execute Trustly's privacy and data protection strategy for the Americas region, ensuring compliance with US federal and state privacy laws (CCPA, state privacy laws), Canadian privacy laws (PIPEDA, Quebec Law 25), and Brazilian privacy law (LGPD).</li>\n<li>Provide specialist, in-depth privacy advice, ensuring complex privacy issues are resolved effectively.</li>\n<li>In collaboration with the wider Privacy &amp; DPO Team, implement and adapt Trustly's global privacy framework to ensure compliance with US, Canadian, and Brazilian requirements.</li>\n<li>Conduct and oversee privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new products, services, features, and business initiatives.</li>\n<li>Provide specialist privacy by design guidance to embed into product and engineering workstreams as required.</li>\n<li>Manage data subject rights requests and handle data disclosure requests from federal law enforcement agencies, ensuring timely and compliant responses.</li>\n<li>Lead privacy breach preparedness and incident response efforts for the Americas region, including developing incident response plans, coordinating breach investigations, and managing regulatory notifications.</li>\n<li>Monitor legislative and regulatory developments affecting privacy and data protection in the Americas, providing timely analysis and recommendations to senior leadership.</li>\n<li>In collaboration with the DPO, manage engagements with privacy regulators in the Americas, including US state attorneys general offices, federal agencies, the Office of the Privacy Commissioner of Canada (OPC), and the Brazilian National Data Protection Authority (ANPD).</li>\n<li>Collaborate closely with the global Privacy &amp; DPO team to ensure alignment on privacy strategies, share best practices, and coordinate cross-regional privacy initiatives.</li>\n<li>Develop and maintain privacy documentation, including data inventories, records of processing activities, and privacy compliance registers.</li>\n"
    },
    {
      "text": "WHO YOU ARE",
      "content": "\n<li>Juris Doctor (JD) degree from an accredited law school and active bar admission in at least one US jurisdiction, with 7-10 years of experience as a privacy lawyer at a technology company, including strong training at a reputable law firm.</li>\n<li>Proven experience in a consumer-facing environment, with deep understanding of consumer privacy expectations and regulatory requirements in the FinTech or payment services sector.</li>\n<li>Experience working as part of a global privacy team, with proven ability to collaborate effectively across multiple jurisdictions and time zones.</li>\n<li>Deep expertise in US privacy laws and regulations, including CCPA/CPRA, all major state privacy laws, and federal sector-specific regulations such as GLBA and FCRA, with the ability to advise on novel and complex US privacy issues without external support.</li>\n<li>Working knowledge of Canadian privacy laws (including PIPEDA and provincial privacy laws such as Quebec Law 25) and Brazilian privacy law (LGPD), sufficient to identify issues and engage local counsel where needed.</li>\n<li>Experience handling data subject rights requests and data disclosure requests from federal law enforcement agencies.</li>\n<li>Experience implementing privacy by design principles and working closely with Product and Engineering teams to embed privacy into technology development, with excellent legal drafting skills for privacy policies, notices, consent mechanisms, and data processing agreements.</li>\n<li>Entrepreneurial and creative by nature with a bias for action, strong project management skills to manage multiple complex privacy initiatives simultaneously, and proven ability to provide practical, business-oriented privacy advice that balances legal compliance with business objectives.</li>\n<li>Exceptional interpersonal and communication skills with the ability to explain complex legal issues in simple terms, strong understanding of international privacy frameworks including GDPR, and experience advising on cross-border data transfers.</li>\n<li>Relevant professional privacy certifications (e.g., CIPP/US, CIPP/C, CIPM, CIPT) are highly desirable.</li>\n<li>Willingness to work flexible hours to collaborate with global privacy team members across different time zones and travel occasionally for meetings.</li>\n"
    }
  ],
  "country": "US",
  "createdAt": 1774360773239,
  "updatedAt": null,
  "categories": {
    "team": "Privacy & DPO",
    "location": "New York, NY",
    "commitment": "Full-time",
    "department": "Legal",
    "allLocations": [
      "New York, NY"
    ]
  },
  "salaryRange": {
    "max": 300000,
    "min": 230000,
    "currency": "USD",
    "interval": "per-year-salary"
  },
  "workplaceType": "hybrid"
}