Legal Officer

Implicity is a digital MedTech company that uses Artificial Intelligence and Big Data to advance cardiology. We offer a SaaS cloud-based & AI-driven platform that automates the cardiac remote monitoring of implanted devices (e.g., pacemakers, defibrillators) and external devices (e.g., weight scales). Our platform was designed to help hospitals monitor patients more effectively, reducing administrative/data burdens and enabling better prevention and treatment.

Implicity has a growing European leadership position in cardiac remote monitoring and plans to expand to the US market.

We are looking for a Legal Officer to join the Regulatory Affairs and Legal team and support compliance, contract drafting, advisory services, and regulatory activities across France, Europe, and the United States.

Position: Legal Officer
Location: Paris
Type: Full-Time

What you will do:

• Ensure compliance of projects with personal data protection laws and regulations, including GDPR, French Data Protection Act, HIPAA, UK GDPR, and related frameworks.
• French and European level: draft processing registers, conduct DPIAs, inform data subjects, request authorizations, and declare compliance with reference methodologies.
• American level: implement the Privacy and Security Compliance Program (in accordance with HIPAA).
• Draft, negotiate, and monitor contracts with clients, subcontractors, IT providers, partners, including public procurement contracts, service agreements, GTU, data protection agreements (DPA/BAA), and agreements with healthcare professionals.
• Ensure compliance with laws and regulations in France, Europe, and the US (anti-gift, transparency of interests, medical device regulations, social security, etc.).
• Provide advisory services to operational teams and draft legal notes in health law, medical device law, ICT law, and related fields.
• Assist with ISO 27001, ISO 13485, and Health Data Hosting (HDS) standards requirements and maintain doctrinal watch.
• Participate in weekly meetings with your manager and align with quarterly OKRs and annual appraisal cycles.

Minimum requirements:

• Master's degree in Law (ideally Master 2) with specialization in Health Law, Business Law, or IT/Data Law.
• Solid experience with data privacy regulations (GDPR, HIPAA, UK GDPR), including implementation of compliance programs and drafting key documents (DPIAs, processing records, consents, etc.).
• 2–5 years of experience reviewing, drafting, and negotiating a wide range of contracts (commercial, service, distribution, marketing, DPA/BAA, CGU, public procurement, etc.).
• Experience in legal risk assessment, dispute/claims management, and supporting legal strategy in litigation.
• Fluency in French and English (written and spoken).
• Rigorous, structured, business-oriented, and able to work autonomously and with external legal advisors when needed.

What will help you succeed:

• Excellent legal writing and synthesis in both French and English.
• Ability to provide operational legal advice and write clear, actionable legal notes.
• Experience working with cross-functional teams (product, compliance, sales, IT, marketing).
• Ability to assess and manage compliance risks across activities, especially marketing and commercial operations.
• Familiarity with ISO 13485, ISO 27001, and Health Data Hosting (HDS) requirements.
• Ability to navigate multi-jurisdictional environments (France, EU, US).
• Curious, adaptable, and proficient with digital tools (Notion, Slack, Google Drive).
• Team player with the ability to collaborate with or under the guidance of the current Legal Counsel.

Nice to have:

• Practical knowledge of US and international regulatory frameworks (HIPAA, FDA).
• Experience with medical device regulations, anti-gift laws, and transparency obligations.
• Knowledge of medical research law and supporting clinical teams in structuring and securing research activities.
• Experience drafting legal memos and contributing to regulatory or ISO documentation.
• Hands-on, resilient, and proactive mindset with a focus on healthcare impact.
• Motivation to contribute to healthcare improvement and thrive in a fast-paced environment.
• Strong work ethic and integrity; collaborative mindset.
• Interest in Implicity and alignment with our mission.

It is OK to apply without meeting all criteria: tell us why you think you can be the one.

Recruitment process:

• 1) Initial HR interview (30 minutes)
• 2) Interview with Legal Counsel and Head of Regulatory Affairs (60 minutes)
• 3) Legal and technical questions related to future responsibilities
• 4) Final interview with the CEO and/or COO (60 minutes)
• 5) Reference check
• 6) Job offer (usually issued within 72 hours)

Recruitment typically lasts 3–4 weeks depending on availability.

General information:

Salary:

• Base salary for this full-time role ranges from 40k€ to 50k€ per year, depending on experience.
• Employee stock option plan (BSPCE) subject to customary conditions.

Benefits:

• Health care plan: Alan, 35€ / month (+ 20.25€ for children)
• Luncheon vouchers: 9€ (50% employer)
• Transport: 50% of your pass or sustainable mobility pass

Remote work & location:

• Location: 29 rue du Louvre, 75002, Paris
• 3 days remote per week (progressively)

Why us?

• We are a purpose-driven scale-up with international reach and English as the working language.
• We offer a best-in-class solution with growing opportunities and a dynamic culture.
• Values: Integrity, Ambition, Cooperation, Autonomy.
• Office in Paris; regular team events; strong emphasis on work-life balance.
• Tools: Slack, Notion, Google Drive.
• Equity opportunity for employees.

Additional information:

• Contract Type: Full-Time
• Location: Paris
• Possible partial remote
• Salary: 40,000€–50,000€ per year

Apply Now

See Other Implicity Job Listings

• Niveau hiérarchique
  Cadre