Greg focuses his practice on health care law, and leverages his background dealing with cybersecurity, data privacy, and health care issues to provide trusted counsel to clients on a variety of matters including risk assessment, operational compliance concerns, provider credentialing, administrative proceedings, and compliance program implementation and training.
He worked previously as a senior assistant attorney general and director of CyberOhio, a division of the Ohio Attorney General’s office. With CyberOhio, Greg helped draft and pass into law the Ohio Data Protection Act. The legislation was the first of its kind in the United States and gives businesses an affirmative defense to certain data breach lawsuits. While at the attorney general’s office, Greg’s duties also included managing and supervising the Cyber & Privacy Unit, analyzing cybersecurity threats, developing plans for minimizing risk, performing cybersecurity outreach throughout Ohio, and working with other attorneys general offices. He is a frequent author and lecturer on cybersecurity issues for businesses.
He has also worked as an enforcement/compliance attorney with the State Medical Board of Ohio, ensuring statutory and administrative rule compliance by physicians, physician assistants, and massage therapists. Additionally, he oversaw investigations and prepared complex cases for formal action by the State Medical Board. Greg also advised board members and agency personnel on issues related to the Medical Practices Act of Ohio, Chapter 119 Administrative Procedures, and federal rules and regulations implicating the area of health care.
Greg also has significant experience in criminal law based on his practice as an assistant county prosecutor in both Seneca and Delaware counties. In this role, he managed adult felony trial dockets in both counties, which included handling cases at the investigation, trial, and appeal stages.
Articles in the National Law Review database by Gregory A. Tapocsi