
HIPAA & Health Information Privacy & Security
Finding & addressing risks to help you stay in compliance
Navigating the requirements of HIPAA and related health information privacy and security laws can be overwhelming. Whether you need
- sophisticated reviews of complex privacy questions
- regulatory advice and security reviews in the context of corporate transactions
- advice on how data can be made available and used, determining whether HIPAA, information blocking, or 42 CFR Part 2 applies, and providing answers to more nuanced questions
- data breach response team capabilities if a data incident, cyber, or ransomware attack occurs
- to understand your legal obligations and options, related issues, and strategies to address them
our experienced health information privacy team can help.
Helping you stay ahead of HIPAA & health privacy challenges
- Our team includes:
- American Health Law Association’s (AHLA) President and former chair of AHLA’s Health Information & Technology Practice Group
- Leading national data breach response and investigation counsel
- A deep bench of dedicated HIPAA lawyers who have been practicing exclusively in this space since HIPAA law and privacy, security and breach notification regulations were first passed
- Attorneys who monitor the rapid movement around privacy and security and changing requirements surrounding HIPAA and other health information privacy and security laws
- Attorneys who provide strategic and practical advice to avoid harsh penalties imposed for non-compliance
- Numerous career health law attorneys with 20-plus years of healthcare regulatory and government investigation defense expertise who have successfully defended hundreds of clients in Office for Civil Rights HIPAA privacy, security and breach investigations.
HIPAA2Z: A simpler way to comply with HIPAA
- Our unique HIPAA privacy and security compliance tool provides HIPAA compliance efficiently and quickly
- Flat, affordable fee at a fraction of the typical cost
- Automated tool uses cutting-edge technology to provide a risk assessment, policies, procedures, and forms required for HIPAA compliance
- Designed by a former chief privacy officer and attorney with 25-plus years’ experience and numerous security experts
- Learn more at www.hipaa2z.com
Our clients
We help healthcare providers and vendors across the country
- Health systems and hospitals
- Physicians, dentists, and physician and dental practices
- Health benefit and employer plans
- Third party administrators
- Skilled nursing facilities
- Health information exchange organizations
- Accountable care organizations
- IT companies
- Medical device companies
- Pharmacies
- Hospices
- Healthcare vendors and other “business associates”
Why Nelson Mullins?
- HIPAA2Z – automated tool reduces expense of HIPAA compliance
- Recognized leaders in HIPAA
- In-depth understanding of shifts in technology and data technologies
- Broad privacy and security experience as cyberattacks become increasingly sophisticated
Why Nelson Mullins?
- HIPAA2Z – automated tool reduces expense of HIPAA compliance
- Recognized leaders in HIPAA
- In-depth understanding of shifts in technology and data technologies
- Broad privacy and security experience as cyberattacks become increasingly sophisticated
Why Nelson Mullins?
- HIPAA2Z – automated tool reduces expense of HIPAA compliance
- Recognized leaders in HIPAA
- In-depth understanding of shifts in technology and data technologies
- Broad privacy and security experience as cyberattacks become increasingly sophisticated
Experience
Following is a selected sampling of matters and is provided for informational purposes only. Past success does not indicate the likelihood of success in any future matter.
- Assisted a major global manufacturer in reviewing the sharing of information from and with its occupational health provider to assure compliance with HIPAA while also permitting use of information to protect employees from COVID.
- Prepared turnkey HIPAA privacy, security, and breach notification policy and forms sets for hospitals, physician practices, and business associates and offered email and phone triage service for healthcare providers requiring assistance with HIPAA and state health data privacy and security laws.
- Advised HIPAA Covered Entities and Business Associates in HIPAA privacy, security, and breach notification compliance and state consumer privacy compliance.
- Counseled healthcare providers and related entities on 21st Century Cures Act’s Information Blocking rule and required changes in policies and processes resulting from same.
- Advised substance use disorder treatment providers on specific compliance obligations due to 42 CFR Part 2 and HIPAA.
- Assisted a major IT platform in structuring its services in order to avoid application of HIPAA altogether.
- Complete review of a business associate’s systems in order to provide assurances that its systems for de-identification of information met HIPAA requirements.
- Reviewed HIPAA exemptions from relevant state and international privacy laws.
Why Nelson Mullins?
- HIPAA2Z – automated tool reduces expense of HIPAA compliance
- Recognized leaders in HIPAA
- In-depth understanding of shifts in technology and data technologies
- Broad privacy and security experience as cyberattacks become increasingly sophisticated
Helping you stay ahead of HIPAA & health privacy challenges
- Our team includes:
- American Health Law Association’s (AHLA) President and former chair of AHLA’s Health Information & Technology Practice Group
- Leading national data breach response and investigation counsel
- A deep bench of dedicated HIPAA lawyers who have been practicing exclusively in this space since HIPAA law and privacy, security and breach notification regulations were first passed
- Attorneys who monitor the rapid movement around privacy and security and changing requirements surrounding HIPAA and other health information privacy and security laws
- Attorneys who provide strategic and practical advice to avoid harsh penalties imposed for non-compliance
- Numerous career health law attorneys with 20-plus years of healthcare regulatory and government investigation defense expertise who have successfully defended hundreds of clients in Office for Civil Rights HIPAA privacy, security and breach investigations.
HIPAA2Z: A simpler way to comply with HIPAA
- Our unique HIPAA privacy and security compliance tool provides HIPAA compliance efficiently and quickly
- Flat, affordable fee at a fraction of the typical cost
- Automated tool uses cutting-edge technology to provide a risk assessment, policies, procedures, and forms required for HIPAA compliance
- Designed by a former chief privacy officer and attorney with 25-plus years’ experience and numerous security experts
- Learn more at www.hipaa2z.com
Our clients
We help healthcare providers and vendors across the country
- Health systems and hospitals
- Physicians, dentists, and physician and dental practices
- Health benefit and employer plans
- Third party administrators
- Skilled nursing facilities
- Health information exchange organizations
- Accountable care organizations
- IT companies
- Medical device companies
- Pharmacies
- Hospices
- Healthcare vendors and other “business associates”
Following is a selected sampling of matters and is provided for informational purposes only. Past success does not indicate the likelihood of success in any future matter.
- Assisted a major global manufacturer in reviewing the sharing of information from and with its occupational health provider to assure compliance with HIPAA while also permitting use of information to protect employees from COVID.
- Prepared turnkey HIPAA privacy, security, and breach notification policy and forms sets for hospitals, physician practices, and business associates and offered email and phone triage service for healthcare providers requiring assistance with HIPAA and state health data privacy and security laws.
- Advised HIPAA Covered Entities and Business Associates in HIPAA privacy, security, and breach notification compliance and state consumer privacy compliance.
- Counseled healthcare providers and related entities on 21st Century Cures Act’s Information Blocking rule and required changes in policies and processes resulting from same.
- Advised substance use disorder treatment providers on specific compliance obligations due to 42 CFR Part 2 and HIPAA.
- Assisted a major IT platform in structuring its services in order to avoid application of HIPAA altogether.
- Complete review of a business associate’s systems in order to provide assurances that its systems for de-identification of information met HIPAA requirements.
- Reviewed HIPAA exemptions from relevant state and international privacy laws.
- HIPAA2Z – automated tool reduces expense of HIPAA compliance
- Recognized leaders in HIPAA
- In-depth understanding of shifts in technology and data technologies
- Broad privacy and security experience as cyberattacks become increasingly sophisticated
Highlights from Insights

NMRS Attorneys Published in Florida Bar Journal on CCNA Procurements
November/December 2025

“Prime Equity” and the NIL Era: Shedeur Sanders’ Contract Ushers...
September 3, 2025

From the Ballpark to the Courtroom: “Babe Ruth” Charged in...
August 26, 2025

2025 Updates to HUD’s Section 8 Program: Key Considerations for...
October 16, 2025

FCC Download: Monthly Updates - October 2025
October 13, 2025