Years before HIPAA’s privacy and security rules first took effect, Ballard Spahr formed a team of attorneys from various disciplines to advise health care providers, many health plans, and their business associates on the new requirements. Since then, our HIPAA team has helped clients comply with HIPAA’s requirements and continues to:

  • Keep clients apprised of regulatory and judicial developments and provide ongoing education 
  • Provide guidance on privacy and security rule practices and policies
  • Assist in internal investigations, assessments of suspected breaches, and the preparation of required notices
  • Counsel on breaches by business associates and subcontractors
  • Prepare HIPAA policies, forms, vendor agreements, and other compliance documentation
  • Conduct HIPAA compliance training and prepare training tools
  • Perform internal HIPAA audits and advise clients about governmental audit programs

With a new series of government audits commencing, Ballard Spahr’s HIPAA team is ready to help clients evaluate and modify their HIPAA compliance programs before the Office of Civil Rights contacts them.

We can provide pragmatic advice scaled to each client’s needs. If a covered entity or business associate is selected for an audit, we can provide legal representation and support. In coordination with other lawyers at the firm, including those in our Privacy and Data Security Group, we can address concerns that extend beyond HIPAA, including those arising from state laws, standards established by the European Union and jurisdictions outside of the United States, and the evolving realm of cybersecurity.