Privacy Data & AI Counsel

About Ramp

At Ramp, we’re rethinking how modern finance teams function in the age of AI. We believe AI isn’t just the next big wave. It’s the new foundation for how business gets done. We’re investing in that future — and in the people bold enough to build it.

Ramp is a financial operations platform designed to save companies time and money. Our all-in-one solution combines payments, corporate cards, vendor management, procurement, travel booking, and automated bookkeeping with built-in intelligence to maximize the impact of every dollar and hour spent. More than 50,000 businesses, from family-owned farms to e-commerce giants to space startups, have saved $10B and 27.5M hours with Ramp.

Founded in 2019, Ramp powers the fastest-growing corporate card and bill payment platform in America, and enables over $100 billion in purchases each year.

Ramp’s investors include Lightspeed Venture Partners, Thrive Capital, Sands Capital, General Catalyst, Founders Fund, Khosla Ventures, Sequoia Capital, Greylock, Redpoint, and ICONIQ, as well as over 100 angel investors who were founders or executives of leading companies. The Ramp team comprises talented leaders from leading financial services and fintech companies—Stripe, Affirm, Goldman Sachs, American Express, Mastercard, Visa, Capital One—as well as technology companies such as Meta, Uber, Netflix, Twitter, Dropbox, and Instacart.

Ramp has been named to Fast Company’s Most Innovative Companies list and LinkedIn’s Top U.S. Startups for more than 3 years, as well as the Forbes Cloud 100, CNBC Disruptor 50, and TIME Magazine’s 100 Most Influential Companies.

About The Role

As Ramp’s Privacy Data & AI Counsel, you’ll serve as a key legal advisor on data privacy, cybersecurity, data governance, and AI matters—helping Ramp navigate a rapidly evolving regulatory landscape while enabling our product and engineering teams to build and ship at responsibly, at high velocity, and at scale. You’ll report to our Senior Privacy Counsel.

This is a high-impact role at the intersection of law, technology, and trust. You’ll work cross-functionally with Engineering, Product, Security, and Compliance to embed privacy and security-by-design principles into everything we build. As Ramp continues to expand its AI capabilities and global footprint, you’ll play a central role in shaping strategy, frameworks, policies, and practices at Ramp.

What You’ll Do

• Privacy & AI Governance: Advise on global privacy and AI laws (e.g. CCPA, other state privacy and marketing laws, GDPR, EU AI Act, and PIPEDA) and other international laws and frameworks), including data mapping, data subject requests (DSRs), and privacy impact assessments
• Privacy Compliance Automation: Manage and help automate privacy program work, such as data mapping, data subject requests (DSRs), and privacy impact assessments
• Product Counseling: Partner with Product and Engineering teams to advise on and help ship new features and products
• Incident Management and Business Continuity: Collaborate with Information Security, Engineering, and other stakeholders to support incident management and business continuity work, including improving and maintaining policies and plans, conducting training and tabletop exercises, and helping manage the response and recovery in the event of a security incident or other business continuity event
• Commercial Support: Draft, review, and assist with negotiation of data processing agreements (DPAs), and data, AI, and information security provisions in customer, vendor, and partner contracts
• Regulatory Monitoring: Proactively track and analyze developments in privacy, cybersecurity, AI, and data governance regulation at the federal, state, and international levels, and translate those developments into actionable business advice
• Training: Create and deliver privacy, AI, and information security training to internal stakeholders to build awareness and increase business partner enablement

What You’ll Need

• J.D. from an ABA-accredited law school and active membership in good standing in at least one U.S. state bar (ability to register as in-house counsel in New York preferred)
• 4–7 years of experience in data privacy, cybersecurity, or AI law, with a combination of law firm and in-house experience preferred
• Deep familiarity with U.S. privacy and data security frameworks (e.g. CCPA/CPRA, CAN-SPAM, TCPA, 23 NYCRR Part 500, and state breach notification statutes) and working knowledge of international regimes (e.g. GDPR, PIPEDA, and LGPD)
• Demonstrated experience advising on AI governance, including AI risk assessments, model governance, and emerging AI regulatory frameworks (EU AI Act, Colorado AI Act, CCPA/CPRA, and other U.S. state and local AI laws)
• Demonstrated experience using AI tools to improve and automate legal work and empower business teams
• Hands-on experience drafting and negotiating DPAs, AI addenda, and other data and security-related provisions commercial agreements
• Proven ability to translate complex legal and regulatory requirements into practical, business-friendly guidance for technical and non-technical stakeholders
• Comfort operating at a fast pace in a high-growth, technology-driven environment, with a bias toward action and creative problem-solving

Nice-to-Haves

• CIPP/US, CIPP/E, AIGP, CISM, CISSP, or similar AI, privacy, or security certification
• Experience handling subpoenas, regulatory inquiries, and investigations
• Experience in the fintech or financial services industry, particularly with payment processing, banking-as-a-service, or corporate card products
• Familiarity with SOC 2, ISO 27001, PCI-DSS, or other information security compliance frameworks

Benefits (for U.S.-based Full-time Employees)

• 100% medical, dental & vision insurance coverage for you
• Partially covered for your dependents
• One Medical annual membership
• 401k (including employer match on contributions made while employed by Ramp)
• Flexible PTO
• Fertility HRA (up to $10,000 per year)
• Parental Leave
• Unlimited AI token usage
• Pet insurance
• Centralized home-office equipment ordering for all employees
• Health and Wellness stipend
• In-office perks: lunch, snacks, drinks, and more
• Budget for intra-office travel
• Relocation support to NYC or SF (as needed)

Referral Instructions

If you are being referred for the role, please contact that person to apply on your behalf.

Other Notices

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Beware of recruiting scams: Ramp will only contact you through official @Ramp.com email addresses and will never ask for payment or sensitive personal information during the hiring process.

Ramp Applicant Privacy Notice

Key skills/competency

• Data Privacy Laws
• AI Governance
• Cybersecurity
• Regulatory Compliance
• Contract Negotiation
• Incident Management
• Product Counseling
• Fintech Legal
• Data Protection
• Legal Automation