Privacy/Security and Electronic Health Records

Our lawyers assist health care providers and other entities in navigating the complexities of compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA and the HIPAA Privacy, Security and Breach Notification Rules, the information blocking and interoperability provisions of the 21st Century Cures Act and its implementing regulations, and other state laws and regulations governing data protection and the privacy and confidentiality of sensitive health information. In addition, we counsel clients on assessing and addressing legal and compliance issues presented by emerging technologies and data sharing models and programs, including privacy, security and data protection, contracting issues, operational aspects of health information exchanges, and clinically integrated networks.

We counsel clients on a wide range of contractual, compliance and operational concerns related to the implementation of electronic health records (EHR) systems, patient portals and mobile applications, including access and remote access to health records and electronic medical information.

We also provide input for our health care provider clients in the selection, acquisition and implementation of EHRs and other health information systems. We draft and assist in the contracting process for these complex systems.