Apply on Employer Site

Gallagher · 1 week ago

Privacy Counsel

Rolling Meadows, IL

Full-time

Onsite

Entry, Mid Level

$127K/yr - $248K/yr

1+ years exp

Gallagher is a global community focused on empowering businesses, communities, and individuals to thrive. The Privacy Counsel will be responsible for developing and implementing data protection strategies and ensuring compliance with privacy laws across Gallagher Global Brokerage, primarily focusing on the US business segment.

ConsultingFinancial ServicesInsuranceManagement ConsultingRisk Management

Responsibilities

Collaborate with the GPO, GGB Division Privacy and IT Leads, the GGB-US General Counsel and local GGB business leaders to develop and execute a comprehensive data protection strategy for GGB that aligns with business objectives and regulatory requirements

Create and maintain data protection policies, standards, guidelines and playbooks that reflect best practices and ensure compliance with applicable laws and regulations

Identify and assess privacy risks (including conducting privacy risk assessments and data transfer impact assessments) across jurisdictions and provide guidance to business units on risk mitigation strategies

Provide expert advice and guidance to GGB, the GPO and other stakeholders on privacy-related matters, including data sharing, international transfers of personal data, consent management, data subject rights, data incidents, vendor risk management, due diligence and integration relating to merger and acquisition activities, responses to client privacy queries, data minimization, privacy complaints, determinations of requirements to have a Data Protection Officer (or equivalent) in an entity, data analytics and artificial intelligence

Develop and deliver privacy training programs to raise awareness and ensure understanding of data protection obligations among employees, including high risk users

Conduct assessments for new projects, systems, and processes to identify and address potential privacy risks, and for data transfers where required by law

Lead and coordinate the containment and response to data privacy incidents, including conducting investigations, implementing corrective actions, responding to client, carrier and data subject queries, and reporting to relevant authorities, companies and involved data subjects

Assess privacy risks in relation to GGB’s supply chain, working closely with colleagues in security, IT, the GPO, legal and procurement

Provide review and negotiation of privacy-related contractual terms with individuals, vendors, clients and insurance markets

Monitor and report on compliance with data protection, HIPAA and AI laws, regulations, and internal policies, and implement controls to ensure ongoing adherence

Advise business units on privacy requirements and best practices related to records retention and de-identification/destruction and work closely with IT and business units to implement new retention and de-identification/destruction guidelines and capabilities

Collaborate and build effective working relationships with internal and external stakeholders, including the GPO, Legal, Security, Insurance, IT, AI, Data, HR, Marketing, Digital and third-party vendors, to ensure alignment and cooperation in data privacy initiatives

Stay up-to-date with emerging trends, technologies, and legal and regulatory developments in the field of data protection, privacy, AI and cybersecurity

Qualification

Privacy law expertiseData protection strategyPrivacy risk managementCIPP/US certificationHIPAA knowledgePrivacy gap analysisData privacy trainingStakeholder engagementIncident response

Required

1+ year practicing attorney in the privacy space

Experience in carrying out privacy gap analysis, creation and implementation of remediation plans as well as designing and implementing privacy projects preferable

Experience and expertise in data protection and privacy management, preferably in a multinational organization

In-depth knowledge of data protection laws and regulations, such as HIPAA, CCPA, and other regional privacy frameworks

Strong understanding of privacy risk management principles and practices

Preferred

Privacy qualifications / certificates e.g. CIPP/US, CIPM preferred

Previous insurance experience preferred

Benefits

Medical/dental/vision plans, which start from day one!

Life and accident insurance

401(K) and Roth options

Tax-advantaged accounts (HSA, FSA)

Educational expense reimbursement

Paid parental leave

Digital mental health services (Talkspace)

Flexible work hours (availability varies by office and job function)

Training programs

Gallagher Thrive program - elevating your health through challenges, workshops and digital fitness programs for your overall wellbeing

Charitable matching gift program

And more...

Company

Gallagher

Glassdoor3.6

Gallagher is an international insurance brokerage and risk management services firm.

Founded in 1927

Rolling Meadows, Illinois, USA

10001+ employees

https://www.ajg.com/

Funding

Current Stage

Public Company

Total Funding

$9.7B

2024-12-09Post Ipo Equity· $8.5B

2023-06-22Post Ipo Debt· $1.2B

1984-06-29IPO

Leadership Team

Alec Herring

Area Senior Vice President

Mark Gresser

Executive Vice President

Recent News

Life Insurance International

Gallagher integrates AssuredPartners aviation team with global aerospace unit

2026-01-07

City A.M.

London’s South Bank beefs up leadership team

2025-12-04

Zawya.com

Saudi Arabia: Gallagher forecasts key changes in construction insurance

2025-11-19

Company data provided by crunchbase