Legal Counsel - Privacy

Summary

Join Lyra Health's growing legal team as a Privacy and Product Counsel! This full-time remote role, reporting to the Associate General Counsel, Privacy, offers the chance to work independently managing privacy issues, conducting legal research, counseling stakeholders, and leading projects supporting Lyra's privacy program and AI governance. You will advise internal stakeholders on privacy concerns, ensure compliance with state and federal laws, collaborate with commercial counsel on agreements, review BAAs, advise product and business teams, investigate privacy incidents, and participate in AI governance teams. The ideal candidate is a passionate privacy attorney with experience in healthcare privacy laws, project leadership, and collaboration with diverse stakeholders. Lyra offers a competitive salary, comprehensive benefits, and a collaborative work environment.

Requirements

• Law degree from top-tier law school and membership in a state bar with good standing
• 5+ years legal experience in-house or at a law firm
• Experience analyzing and advising on health care privacy laws on the state and federal level; implementation of CCPA or GDPR programs a plus, as is experience advising on AI regulation and governance
• Excellent problem-solving capabilities, judgment, communication (written and verbal), and interpersonal skills
• Experience leading projects, including collecting, distilling and summarizing issues from relevant stakeholders and moving projects forward
• Experience in solving product legal matters, including communicating and collaborating effectively with stakeholders with a wide range of legal and technical experience and knowledge
• Ability to think quickly on your feet, convey grace under pressure, and simultaneously manage workloads, multiple demands and shifting priorities
• Ability to operate autonomously, yet collaboratively, while bringing a positive attitude to the workplace
• Sense of humor

Responsibilities

• Support Lyra’s privacy program and advise internal stakeholders on privacy concerns related to Lyra’s products and services, and the implementation of new technologies, such as AI
• Coordinate with internal teams to ensure corporate adherence to applicable state and federal privacy laws, including, but not limited to, CCPA and HIPAA
• Collaborate with commercial counsel to ensure that privacy provisions in commercial agreements and Business Associate Agreements (BAAs) appropriately manage risk and comply with privacy policies, laws, rules, regulations, and company objectives
• Review BAAs negotiated by commercial counsel and document data use permissions for new and existing customers
• Work cross-functionally to advise product and business teams on potential privacy implications of Lyra’s new and existing product lines, including reviewing and approving product requirement document (PRDs)
• Investigate, document and report privacy incidents, including breaches, in accordance with applicable law, contractual requirements and corporate strategy
• Participate in cross-functional teams working on AI governance and AI use case reviews
• Other duties as assigned

Preferred Qualifications

• Experience working in-house with a technology company and/or health care organization strongly preferred
• Additional experience with the following a plus: State and/or Federal experience with a healthcare regulatory agency

Benefits

• Comprehensive healthcare coverage (including medical, dental, vision, FSA/HSA, life and disability insurances)
• Lyra for Lyrians; coaching and therapy services
• Equity in the company through discretionary restricted stock units
• Competitive time off with pay policies including vacation, sick days, and company holidays
• Paid parental leave
• 401K retirement benefits
• Monthly tech allowance
• We like to spread joy throughout the year with well-being perks and activities, surprise swag, free food, regular community celebration…and more!