skip to main content


Bill Roberts Offers New Guidance on Health Care Data Privacy

August 19, 2016

Shipman & Goodwin Health Law attorney William J. Roberts recently discussed ways health care organizations can broaden their data privacy and security efforts as they are faced with the expanding scope of privacy laws.

During a webinar conference by the Health Care Compliance Association, as well as in comments to several national health care publications, Mr. Roberts discussed strategies for vendor due diligence; policies, procedures and model contract language for vendors, including business associates and non-business associate vendors; and best practices for managing vendor privacy issues, including dealing with data breaches.

In addition to being a member of the firm’s Health Law Practice, Mr. Roberts is Chair of its Privacy and Data Protection group. He focuses his practice on health care corporate, regulatory, data privacy and compliance matters.  He routinely advises clients on data privacy and security laws, particularly as those laws intersect with the health care industry.  Mr. Roberts prepares comprehensive privacy and data security programs and policies for businesses, and regularly counsels clients regarding the collection, use, retention, disclosure, transfer and disposal of protected health information and personal information.  He has assisted clients navigate and remediate more than 150 data breaches.

To read his comments, click below:

Business Associate Agreement Is Opening To Cover More Privacy, Compliance Bases
Vendor Privacy: Due Diligence and Contracting Solutions
Write, revisit BAA policies that protect you when associates mess up HIPAA


Practice Areas

Industries & Featured Services

© Shipman & Goodwin LLP 2020. All Rights Reserved.