Associate General Counsel, Privacy & Data Protection

Overview

Coinbase is seeking an Associate General Counsel, Privacy & Data Protection to lead and shape the privacy program across global operations. This role partners with product, engineering, security, and business teams to ensure compliance with privacy laws and protect user data. The role includes advising on data processing activities, drafting DPAs, managing data subject rights, and supporting incident response.

Responsibilities

• Lead and manage Coinbase's global privacy program, including policies, data flows, and DPIAs.
• Advise on data processing agreements, third-party risk, and cross-border data transfers (including transfers under GDPR/CCPA frameworks).
• Oversee privacy law compliance initiatives across product, engineering, security, and operations teams.
• Lead data subject rights requests and regulatory inquiries; coordinate with stakeholders to respond in a timely and accurate manner.
• Develop and implement training, awareness, and incident response processes related to privacy and data protection.
• Monitor changing privacy laws and regulations; draft guidance and playbooks to ensure ongoing compliance.

Qualifications

• Juris Doctor from an accredited law school; admission to the bar in at least one relevant jurisdiction.
• 8+ years of privacy and data protection experience, preferably in the technology sector.
• Expertise with GDPR, CCPA, CPRA, and other global privacy frameworks; experience with data transfers and DPAs.
• Strong business partner and advisory mindset with excellent judgment, negotiation, and communication skills.
• Ability to work cross-functionally in a fast-paced, global environment; demonstrated ability to translate complex legal concepts for non-lawyers.