HIPAA Counseling

We assist covered entity and business associate clients, including health care providers, commercial health plans, billing companies and self-insured employer health plans, in understanding their HIPAA obligations and meeting HIPAA compliance requirements.

We assist clients in:

• Working with security consultants to conduct risk analysis and identify the best approach to protecting data through the development of a security and risk management program
• Developing and implementing HIPAA policies and procedures required by the HIPAA Security and Privacy Rules
• Determining permissible uses and disclosures of PHI
• Responding to subpoenas, court orders and other demands for PHI
• Investigating potential security incidents and performing a risk analysis to determine obligations under the HIPAA Breach Notification Rule, as well as applicable State privacy laws
• Taking appropriate employment action in the event of impermissible uses and disclosures of PHI by employees
• Drafting HIPAA-compliant Business Associate Agreements and Authorizations
• Responding to subpoenas, court orders and other demands for PHI