Carolyn V. Metnick focuses her practice on health information privacy and security. She helps covered entities and business associates develop effective policies, procedures and workforce training to comply with HIPAA and the HITECH Act. She also counsels businesses in data breach investigations and compliance with other federal and state breach notification laws, and assists businesses in responding to cyberattacks and other security breaches.
Carolyn also advises healthcare providers on transactions and business issues. She guides clients through joint ventures, mergers and acquisitions, and counsels on governance matters as well as regulatory issues. She advises on compliance with the federal fraud and abuse laws, including the Stark Law and the Anti-Kickback Statute. Carolyn’s background as a former litigator helps inform her transactional work.
Carolyn serves as an adjunct instructor at the University of Illinois–Chicago, School of Public Health, Health Policy and Administration Division. She is also a Certified Information Privacy Professional/United States (CIPP/US) and a Certified Information Privacy Professional/Europe (CIPP/E).
Articles in the National Law Review database by Carolyn V. Metnick