NP Alumni
  1. Home
  2. Work

Health Information Exchange



We understand the risks involved in the exchange of patient data and bring clarity, direction and extensive health industry experience to this new and evolving area of health care.

Our approach

Federal and state regulations regarding Health Information Exchanges (HIEs) and Health Information Technology (HIT) are still being defined. This uncertainty presents new opportunities in health care, as well as a variety of legal issues that crop up when patient information is managed or exchanged digitally. We have the hands-on experience and deep regulatory knowledge necessary to help our clients address those concerns, protect their assets and maintain high standards of quality, safety and efficiency. And our deep bench of legal counsel means we can offer a full spectrum of services in this sector, including regulatory advice and intellectual property and nonprofit organization counsel.

We work with Regional Health Information Organizations (RHIOs) and statewide Health Information Exchanges (HIEs) on corporate formation and governance, privacy and security compliance and implementing gateways for electronic prescribing and interoperable electronic health records. IT developers and end users face other unique issues and we counsel them in network security, privacy and identify theft concerns, regulatory compliance, and insurance issues and help them build thorough business associate agreements and vendor contracts.

Who we work with

  • Regional Health Information Organizations (RHIOs), Health Information Exchanges (HIEs) and their stakeholders
  • Behavioral Health and Substance abuse treatment providers (under 42 CFR Part 2)
  • Software vendors, EMR vendors
  • E-prescribing gateways
  • Personal health record (PHR) vendors
  • Health Information Technology and medical record developers and end users
  • Health care providers participating in an HIE and RHIO

Recognition

  • Recognized by Chambers USA as a nationwide leader in the Field of Privacy Law
  • The Rhode Island Department of Health Founder’s Award, the Rhode Island Attorney General Justice Award and the Rhode Island Department of Health Award for Excellence in Public Health Promotion

Recent experience

  • Serving as general counsel to the Rhode Island Quality Institute (RIQI), the first RHIO to implement a stringent privacy and security legal framework for its HIE and implement an opt-in consent for HIE participation. RIQI is the only entity in the country that received all three federal grants from the Office of the National Coordinator related to the implementation of health information technology, including the Regional Extension Center grant, the Health Information Exchange grant and the Beacon Communities grant.
  • Helped several HIEs and RHIOs prepare governance policies and procedures, developing and implementing data sharing partner and use agreements, authorization forms and consent models
  • Assisted several behavioral health and substance abuse treatment providers with helping them to figure out/navigate how to comply with stringent laws and regulations protecting the use and exchange of behavioral health and substance abuse treatment information
  • Worked with the Massachusetts Center for Health Information and Analysis to develop privacy and security policies related to the statewide All-Payer Claims Database and providing them with ongoing privacy and data security counsel
  • Assisted multiple software vendors and electronic medical record providers with legal issues in the exchange of health information, including patient portals, privacy and security practices and procedures, agreements with providers and HIEs and patient participant agreements
  • Participated in the Health Information Security and Privacy Collaboration (HISPC), a project funded by the National Governor's Association to develop best practices for the exchange of health information across state lines

Health records law moves slowly

Buffalo Law Journal | July 09, 2018

Albany Health Care partner Laurie Cohen is quoted in this article discussing how state and federal guidance are encouraging patients to be more engaged with their health records, and outlining instances in which minors can withhold health information from their parents.

Cybersecurity and benefits plans: The next front in the ongoing battle to protect personal information

Confero | June 30, 2018

Rochester Corporate group associate Jenny Holmes contributed this article to the quarterly magazine for Westminster Consulting, discussing why benefit plans are inviting targets for would-be data thieves, and what plan administrators need to do to protect personal data.

M&A Drives Health Systems' EHR Consolidation

Modern Healthcare | April 02, 2018

Providence health care partner Chris Browning is quoted in this article on the advantages for hospitals that move to a single shared electronic health records platform.

Three shady—and all too common—things that digital health startups do to make money

CNBC | November 16, 2017

Los Angeles health care partner Jill Gordon, who this article identifies as a “top lawyer” in the digital health space, provides in-depth commentary regarding the three common practices she’s seen among health technology startups that may violate medical regulations and what companies should be aware of to avoid costly penalties.

Clinically integrated networks: 5 roadblocks and how to overcome them

Family Practice News | July 16, 2017

Chicago health care associate April Schweitzer is quoted in this article about the challenges for establishing clinically integrated networks and how hospitals and physicians can overcome them.

Show More Show Less

Contacts

Back to top