Director Associate Counsel Data Privacy

JOB SUMMARY: The Associate Counsel, Data Privacy will direct and facilitate NCLH's Privacy Program with the ultimate goal of helping NCLH get results the right way. This role will help shape organizational practices in accordance with evolving global privacy and regulation requirements, oversee privacy compliance strategies, and partner with cross-functional teams to mitigate privacy risk.

DUTIES & RESPONSIBILITIES:

• Lead the development and execution of privacy, data protection, and artificial intelligence compliance strategies across enterprise-wide contract negotiations, ensuring robust risk mitigation and alignment with NCLH's legal and business objectives.
• Serve as a strategic advisor to senior leadership and business units by reviewing new and evolving initiatives for compliance with global privacy, data protection, and AI regulations, ensuring the organization maintains a proactive and compliant posture.
• Drive regulatory compliance in consumer communications and marketing initiatives, offering strategic oversight to ensure alignment with consumer protection, advertising, and digital engagement laws.
• Lead cross-functional collaboration in incident response efforts, including high-impact data breach investigations and reporting, working closely with the Office of Cybersecurity, Digital Experience Team, and Data Governance to ensure effective containment, analysis, and compliance.
• Monitor and assess global regulatory trends in privacy and AI, translating legal developments into actionable business strategy and advising the organization on emerging risks and opportunities.
• Direct the design, implementation, and continuous improvement of NCLH's privacy and AI compliance frameworks, including policies, procedures, data handling protocols, and stakeholder communications.
• Develop and oversee enterprise-wide training and awareness programs, cultivating a culture of compliance and accountability around privacy, data protection, and responsible AI use across all levels of the organization.
• Provide leadership for key Privacy Office programs, including enterprise privacy impact assessments (PIAs), AI risk assessments, website tracking audits, and fulfillment of data subject rights under global privacy regulations.
• Perform other job-related functions as assigned.

QUALIFICATIONS

DEGREE TYPE: Juris Doctorate

FIELD(S) OF STUDY: ABA-accredited law school, and member in good standing of the Florida Bar

EXPERIENCE:

• Minimum 3 years of relevant in-house or law firm work experience, including negotiating contracts. Experience negotiating privacy and data protection-related provisions in contracts preferred.
• Experience designing and monitoring privacy programs, policies and processes.

COMPETENCIES/SKILLS:

• Familiarity with the required elements of effective compliance programs and relevant laws, regulations, and industry standards is preferred, especially if the candidate has an in-depth knowledge of artificial intelligence laws (e.g., EU AI Act), and data privacy laws (e.g., GDPR, CCPA).
• Teaching and presentation skills.
• Excellent people and communication skills and ethical judgment.
• Ability to handle confidential information with discretion and professionalism.
• Working knowledge of privacy management platforms (OneTrust) is required.
• Familiarity with governance, risk and compliance tools and systems (NAVEX, D&B Risk Analytics, etc.) is preferred.

CERTIFICATIONS/LICENSES:

• Admitted to at least one U.S. State bar and is in good standing or otherwise authorized to practice law.

To Executive Search Firms & Staffing Agencies: NCLH does not accept unsolicited resumes from any agencies. All unsolicited resumes will be considered NCLH property, and NCLH will not be obligated to pay a referral fee. This includes resumes submitted directly to Hiring Managers without contacting the NCLH Human Resources Talent Acquisition Department.