Manager Legal - US Data Privacy

About Lowe’s Lowe’s Companies, Inc. (NYSE: LOW) is a FORTUNE® 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2023 sales of more than $86 billion, Lowe’s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Bengaluru, Lowe’s India develops innovative technology products and solutions and delivers business capabilities to provide the best omnichannel experience for Lowe’s customers. Lowe’s India employs over 4,200 associates across technology, analytics, merchandising, supply chain, marketing, finance and accounting, product management and shared services. Lowe’s India actively supports the communities it serves through programs focused on skill-building, sustainability and safe homes. For more information, visit, . About the Team Doing business legally and with integrity is at the heart of how we serve our customers, communities, and fellow associates. The Legal team works diligently to protect Lowe’s reputation, brand and support the organization to take business decisions which are in alignment with our Lowes values and legal principles. Job Summary: We are seeking a dedicated Manager to lead our legal privacy program and support the Privacy office for Lowes US. The ideal candidate should have a deep understanding of US privacy laws, excellent communication skills, and a proven track record in implementing privacy policies and processes within a large retail organization. Roles & Responsibilities: Core Responsibilities:

• Provide legal guidance and counsel on the interpretation/ application of the data protection laws and regulations globally for technology, procurement, marketing, sales, HR, Information Security and other functional and business areas.
• Assist in drafting privacy policies, procedures and monitoring compliance with other privacy and security policies and standards across the organization.
• Fostering a culture of data protection and responsible use of data within the organization, through training and awareness and implementing essential elements of privacy by design. Support the Privacy office with programs and activities as needed in this effort.
• Work with cross-functional teams to prioritize and understand data security initiatives and support legal compliance. Serves as privacy expert, maintains records of the company’s data privacy and cybersecurity compliance efforts. Provide relevant reports to the legal privacy office on incidents and remediation updates.
• Support the development, deployment and maintenance of incident response procedures and the privacy handbook. Participate and guide the information security and other teams in responding to data privacy and security incidents.
• Conduct and supervise data privacy risk assessments for business operations and technology globally and coordinate with internal business and technology teams as required.
• Support the process for the consistent use of data privacy impact assessment were necessitated by business and technology teams.
• Support with impact analysis of upcoming privacy and security/IT laws and frameworks.
• Draft and / or review contract language relating to privacy and security clauses to ensure alignment to company security and privacy standards and minimize data privacy and security risks.
• Review and provide guidance on data processing agreements and standard contractual clauses.
• Support legal Privacy Office with internal and external queries as necessary in relation to data protection processes, subject access rights, and right to be forgotten and other data subject rights globally.
• Manage and evolve global data use and privacy policies and strategies in implementation at India.
• Demonstrate a willingness to learn about Lowes Business, relevant technologies, and operations to effectively evaluate legal risks during the product lifecycle.
• Follow and adhere to internal company legal processes and other relevant legal procedures of the Legal Department.

• LL.B. along with US LLM are strongly preferred.
• CIPP/US certifications and other professional certifications such as the IAPP are strongly preferred.

• Flexible, well-organized and the ability to work in a fast-paced internet and technology driven environment.
• Clear understanding of legal concepts/risks under Privacy laws (US and India).
• Good communication skills to interact with all internal (US legal, Technology, ESS, Finance, HR, other business teams) as well as external stakeholders.
• Strong analytical and problem-solving skills with attention to detail.
• Excellent verbal and written communication skills, with the ability to convey complex information clearly.