Health IT

Creative, value-based solutions for enduring results

Health IT is not one thing... it's many things. That's why we can engage all of our clients' needs, whether involving machine learning, big data, distributed ledgers, FHIR, a learning health system or simply negotiating a business associate agreement. Our interdisciplinary team matches cutting-edge knowledge with practical experience to address today's crisis (ransomware, audit) and plan for the next generation (funding, IT acquisition).

Our Health IT and digital health services allow you to

• Acquire, sell, merge, and finance IT companies within the healthcare technology sector or partnering with providers 
• Assess risks in connection with ongoing operations, acquisitions, and new service offerings and technology platforms
• Complete transactions by setting information lifecycle governance systems
• Design technology structures, policies, and practices
• Develop and implement vendor assessment, data security, and compliance programs internally and on behalf of clients' customers
• Develop and protect new innovations, processes, and products that solve market needs
• Implement outsourcing, licensing, and development agreements, including business process and information technology outsourcing
• Plan and start up digital health IT companies through our experience with independent and institutional healthcare investors
• Stay compliant with evolving healthcare laws and regulations, including HIPAA, FTC, and state rules and protect the privacy and security of personal health information including business associate requirements
• Structure products and partnerships to provide long-term solutions to increase and improve the treatment of patients
• Train and educate employees on best practices in the areas of EHR, patient privacy, data security, and data breach reporting
• Use mobile devices to transmit and access electronic patient records, including physician use of mobile devices

Following is a selected sampling of matters and is provided for informational purposes only. Past success does not indicate the likelihood of success in any future matter.

• Negotiated numerous multimillion-dollar service agreements relating to SaaS services, data ingestion, data aggregation, secure texting, cloud hosting, and numerous other services
• Negotiated a broad variety of Health IT agreements, including electronic health record software contracts, cloud storage agreements, value-added reseller agreements, data analytics, population health management, computer learning, and clinical data registry agreements
• Represented clients in development of and participated in regional and enterprise-wide health information exchange organizations, including establishment of governance structures, data use agreements, privacy and security policies and procedures, and advice on operational matters
• Represented hospitals, physicians, and business associates in responding to data breaches and Office for Civil Rights investigations
• Assisted multi-hospital system in responding to post-payment Meaningful Use Stage 1 audits and in preparing for compliance with Meaningful Use Stage 2 requirements
• Counseled variety of provider clients and business associates on whether specific data breach circumstances require breach notification under HIPAA and applicable state data breach laws, identified mitigation strategies, and assisted with reporting obligations
• Assisted hospital systems in addressing "one patient, one record" safeguards to implement when moving to single electronic health record system to be used by all provider entities within the systems
• Assisted hospitals and physician practices in implementing electronic health record systems, including preparing privacy and security policies, crafting patient portal and remote access agreements, and preparing contracts for the donation of electronic health record technology items and services in accordance with Stark law and Anti-Kickback Statute requirements
• Represented hospital systems and healthcare providers in creation and implementation of HIPAA privacy programs
• Prepared HIPAA/HITECH policies and procedures for hospitals, physician practices, post-acute care providers, business associates, and hospital systems' self-insured health plans
• Reviewed and negotiated health information technology agreements, including electronic health record software contracts, cloud storage agreements, value-added reseller agreements, and clinical data registry agreements
• Counseled healthcare analytics start-up on regulatory implications of licensing de-identified health data from organizations and sub-licensing such de-identified data sets to organizations seeking large data sets
• Represented telemedicine start-up in assessing possible corporate structures and understanding resulting fraud and abuse, corporate practice of medicine, reimbursement, data privacy, data security, and operational limitations and requirements
• Prepared terms of use, data protection, privacy and ownership guidelines, HIPAA/HITECH/FTC compliance safeguards, liability limitations and trade secret protection for newly created mobile application used as a complex care management solution
• Represented Health IT company as outside general counsel in extended care space
• Represented hospital systems and healthcare providers in addressing IT and data management agreements and strategies
• Represented pharmacy company in medical/pharmacy software and claims management 
• Assisted clients in roll-outs of web-based application implementing personal health record, clinician collaboration, and related tools and functionality