The Art of

Navigate with confidence.

HIPAA, GDPR, CCPA, CAN-SPAM, TCPA, FTCA. There’s no shortage of privacy laws and codes. Understanding privacy and cybersecurity requirements is paramount to any business. But articulating these laws to clients with clarity is just as critical. Our privacy-focused attorneys have the experience and know-how to help you navigate the impact of privacy laws and regulations. There’s a science to complying with applicable requirements and there’s an art to explaining these with clarity.

Representative Matters Include:

  • Reviewing for compliance with privacy requirements, including HIPAA, HITECH, FTCA, GDPR, CCPA, CAN-SPAM, TCPA and other laws
  • Designing, drafting, implementing and reviewing privacy policies and procedures
  • Evaluating marketing programs for privacy compliance
  • Reviewing and negotiating business associate agreements, data processing agreements, privacy clauses, standard contractual clauses, and other privacy agreements
  • Auditing privacy and cybersecurity programs including inquiries based on standards such as ISO 27001, NIST, and others
  • Assisting manufacturers building HIPAA compliance programs as a business associate or covered entity
  • Performing privacy officer or data protection officer services on a contract basis
  • Privacy training for organizations including case coverage and complaint handling
  • Reviewing and evaluating website privacy compliance, including contact forms, opt-in consents, privacy policies
  • Drafting patient authorizations and consents
  • Supporting privacy and security incident matters
  • Assisting manufacturers with clinical trials, including data transfer agreements, transfer impact assessments, informed consent, privacy notices, and use of patient data
  • Assessing the application of privacy requirements with mandated FDA reporting and data collection
  • Reviewing commercial field activities for privacy compliance