Cybersecurity & Patient Privacy Compliance

Privacy issues abound, with stringent government penalties for lack of compliance, private lawsuits, and a sophisticated new generation of hackers all requiring higher levels of cybersecurity and training. We assist our clients in complying with HIPAA, 42 CFR Part 2, state privilege statutes, and other privacy laws and regulations. We draft policies and procedures, arrange for proper risk analyses that result in meaningful security policies and infrastructure, and help our clients through breach risk assessments and reporting requirements. We routinely respond to subpoenas on behalf of clients that involve sensitive patient information, including appearing in court to facilitate testimony or filing motions to quash when producing records or testifying would violate HIPAA, 42 CFR Part 2, or state law.