The talk focused on attorneys’ legal and ethical obligations relating to technology, cybersecurity, and data breaches. Kristen and Scott explained how lawyers and law firms can:
- Prevent data breaches through safeguards such as good password practices, encryption, and training both lawyers and staff members;
- Prepare for data breaches, such as by creating an incident-response plan and buying adequate cyber insurance; and
- Respond to a data breach, including meeting the requirements of HIPAA as well as state breach-reporting laws.
Kristen is one of the nation’s leading HIPAA compliance attorneys, with deep experience in data breaches, health information exchange, data sharing for research and clinical integration initiatives, clinical research compliance, clinical trials contracting, biobanking and genomic privacy, and all things “Big Data.”
Scott has considerable experience representing hospitals and other health care providers. A substantial part of his work involves assisting clients with issues relating to information privacy and security. He works with clients in health care and in other industries to help them prevent, prepare for, and respond to data breaches. Scott is a Certified Information Privacy Professional (CIPP/US) through the International Association of Privacy Professionals. He is also the general counsel for Coppersmith Brockelman, providing guidance to other firm attorneys on matters of legal ethics.