Legal Counsel - Regulatory and Compliance

Legora Legora · Vertical AI · New York, NY · Corporate

This role is for a Legal Counsel specializing in Regulatory and Compliance at Legora, an AI-native legal tech company. The counsel will ensure regulatory compliance, manage legal risks, and support business operations, with a focus on data privacy and AI governance. Responsibilities include providing compliance guidance to commercial and product teams, reviewing contracts, conducting compliance assessments, contributing to legal infrastructure, managing privacy programs, and establishing scalable compliance frameworks. The role requires a JD, 4+ years of experience, expertise in GDPR/CCPA, familiarity with ISO standards, and experience with B2B SaaS agreements. A keen interest in AI and legal tech is preferred.

What you'd actually do

  1. Provide compliance oversight and guidance to senior stakeholders across operational, commercial and product teams on regulatory matters, risk assessment, and compliance frameworks for new services, processes, contracts, partnerships, and supply chains.
  2. Review and provide compliance input on commercial contracts, ensuring adherence to regulatory requirements and company policies.
  3. Conduct compliance assessments of product designs, data flows, and operational processes, identifying regulatory risks and developing risk mitigation strategies.
  4. Contribute to building legal infrastructure: templates, playbooks, and internal tooling, including how we use Legora to operationalize legal work and collaborate across teams.
  5. Develop and maintain privacy compliance programs, conduct data protection impact assessments, and ensure ongoing compliance with applicable data protection regulations; and
  6. Establish efficient and scalable compliance frameworks and monitoring systems, developing compliance policies and guidelines that enable teams to proactively integrate regulatory requirements and compliance controls into products and processes.

Skills

Required

  • J.D. (or equivalent) with admission to practice in at least one U.S. state (or another common law jurisdiction)
  • 4+ years of experience at a top-tier law firm and/or as in-house counsel
  • Proven expertise advising on GDPR, CCPA, and cross-border privacy compliance
  • Strong experience negotiating B2B SaaS agreements and supporting commercial teams
  • Strong legal judgment and confidence in making decisions independently
  • Highly organized, responsive, and solutions-oriented
  • Comfortable working across time zones in a global environment, and owning your priorities
  • Focus on achieving meaningful business outcomes, translating into actionable advice delivered clearly and comprehensively
  • Thrive in a fast-paced, dynamic entrepreneurial environment and rapidly evolving business setting
  • Take initiative and are committed to delivering high-quality results

Nice to have

  • Familiarity with ISO standards and global compliance frameworks
  • Keen interest in AI and legal tech
  • Eager to learn and apply these tools in real-world settings

What the JD emphasized

  • AI governance
  • data privacy
  • regulatory compliance
  • compliance oversight
  • risk assessment
  • risk mitigation strategies
  • privacy compliance programs
  • data protection impact assessments
  • compliance frameworks