Speaking Engagements & Conferences

Registration to the Privacy Summit is open.

Fox Rothschild’s Minneapolis Privacy Summit on November 8 will explore key cybersecurity issues and compliance questions facing company decision-makers. This free event will feature an impressive array of panelists drawn from cybersecurity leaders, experienced regulatory and compliance professionals and the Chief Division Counsel of the Minneapolis Division of the FBI.

Attendees receive complimentary breakfast and lunch, and can take advantage of networking opportunities and informative panel sessions:

GDPR and the California Consumer Privacy Act: Compliance in a Time of Change

The European Union’s General Data Protection Regulation has been in effect since May. Companies that process or control EU citizens’ personal data should understand how to maintain compliance and avoid costly fines. Health care businesses should also prepare for the next major privacy mandate: the California Consumer Privacy Act.

Risk Management – How Can Privacy Officers Ensure They Have the Correct Security Policies in Place?

Panelists offer best practices for internal policies, audits and training to help maintain protected health information (PHI), personally identifiable information (PII) or other sensitive data. Learn the cutting edge strategies to combat the technology threats of phishing and ransomware.

Fireside Chat

Jeffrey Van Nest, Chief Division Counsel of the Minneapolis Division of the FBI, speaks on the state of affairs in regulation and enforcement; including how to partner with the FBI, timelines of engagement and the latest on cyber threat schemes. His insights offer details on forming effective cyber incident response plans.

Keynote Speaker – Ken Barnhart

Ken is the former CEO of the Occam Group, a cybersecurity industry advisor and the founder and principal consultant for Highground Cyber – a spin-off of the Occam Group’s Cybersecurity Practice Group. For more than a decade, he has helped companies of all sizes design, host and secure environments in private, public and hybrid cloud models. Prior to his work in the corporate sector, Ken served as a non-commissioned officer in the United States Marine Corp and is a decorated combat veteran of Operation Desert Shield\Storm with the HQ Battalion of the 2nd Marine Division.

Geared toward an audience of corporate executives, in-house chief privacy officers and general counsel, the summit will provide important take-aways about the latest risks and threats facing the health care industry.

Stay tuned for more agenda details. Registration is open.

Do you have questions about selecting, implementing and using an Electronic Health Record (EHR), including:  

  • What do you need to consider when selecting an EHR?
  • What is "meaningful use" and how can you qualify for ARRA incentive payments?
  • What are the steps and secrets to successful EHR implementation?
  • What in are some of the legal issues you need to consider before and after adopting an EHR?
  • What are the new privacy and security requirements that apply to EHRs?

Join us as Stevie Davidson, Dr. Jack Cappittelli and Helen Oscislawski discuss the answers to these questions and more, as well as offer practical advice based on their personal experience with EHRs. 

When:              Thursday, December 10, 2009

Time:                12:00-1:30 pm (lunch will be served)

Where:              Fox Rothschild LLP
Princeton Pike Corporate Center
997 Lenox Drive, Building 3
Lawrenceville, NJ
Board Room

To register, visit our registration page.

Friday, November 20, 2009

Virtua Center for Learning
Classroom A
1200 Howard Blvd.
Mt. Laurel, NJ

Covered entities will be required to make notifications of certain HITECH security breaches to the affected individuals, newspaper and media outlets in the state as well as the U.S. Secretary of Health & Human Services. Penalties will be assessed starting February 2010. Learn how to protect your hospital by putting a plan into action today!  The workshop will cover:

  • Breach notification and requirements for business associates
  • Implementation plan for compliance
  • Case scenarios of how the requirements can impact hospital operations, including what steps can be taken to prevent or mitigate risk

You can prevent your hospital from falling behind the trend toward health information exchange. Learn what you need to do to be compliant with this new regulatory requirement. This session is specifically designed for CIOs and compliance, security and privacy officers as well as in-house legal counsel.

For more information on how to register, visit our registration page.

     Do you need help understanding what to do in light of HITECH’s privacy and security changes to HIPAA?  Are you concerned about HITECH’s increased penalties for HIPAA violations? Are you struggling to understand what needs to be done under the New Jersey Security Breach Notification Act, and how these state requirements reconcile with the HITECH breach notification requirements? 

     Join me on Wednesday, August 19, 2009 at 12:00 p.m. for a Webinar offered through the Medical Society of New Jersey called the "Privacy and Security Law Update" where I will cover the HITECH Act and how it changes HIPAA, required and recomended amendments to Business Associate Agreements, security breach notification obligations under HITECH and the New Jersey Identity Theft Prevention Act, the Red Flags Rule, and more.

     To register, visit MSNJ’s web site and click on the Events Registration link. Please note that non-MSNJ members who wish to register for the webinar must first create an "new user" account with MSNJ and establish a password to be able to register for the webinar.  To create a new user account, visit MSNJ’s Events Detail page by clicking here.

As HITECH refocuses the health care industry’s attention on security, the role of National Institute of Standards and Technology (“NIST”) in developing standards for health information security will become more center stage.  

On May 18, 2009, Fox Rothschild LLP will present at the NIST and CMS Security Rule Conference in Gaithersburg, Maryland called“Safeguarding Health Information:  Building Assurance Through HIPAA Security”.   Elizabeth Litten, Esq., a partner of Fox Rothschild’s Health Law Group, and Co-chair of its Government Relations practice group, will be presenting at the NIST/CMS Security Conference as part of a Panel Discussion on Assessments from the Organizational Perspective.   The panel will share its experiences with, and expectations for, audits, assessments, and compliance reviews, and provide strategies for greater assessment efficiencies.   For further information on the NIST/CMS Security Rule Conference, please visit the NIST website


For a copy of the Power Point presentation prepared by Elizabeth and Helen Oscislawski, Esq. for the NIST/CMS Security Rule Conference please visit our Blog again next week, or if you subscribe to our Blog a copy will be e-mailed to you directly. 

Since HIPAA and its related Privacy and Security Rules went into effect for health care providers, there have been a number of new laws and regulations passed that impact the policy, procedures and overall privacy and security approach for many health care organizations. The Red Flag Rules (which go into effect for the health care sector this May of 2009), the New Jersey Identity Theft Prevention Act and its most recently promulgated regulations, as well as the brand new federal HITECH Act are among those that must be considered, addressed and incorporated into a health care organization’s current approach, strategy, policies and procedures.

Join me on April 14, 2009 at the New Jersey Hospital Association in Princeton, New Jersey for a 1-day educational workshop where I will walk through the requirements of these new laws, their impact to New Jersey health care organizations, and what steps can be taken to assure compliance.  For more information on how to register, visit the NJHA’s website or click here for a link to the Registration Form. 

The e-Health Initiative will host its fifth annual conference and awards dinner December 3–5 at the Ronald Reagan Building and International Trade Center in Washington, DC.   According the organization’s website, policymakers, decision-makers, and national, state and local leaders from every sector of healthcare will meet to assess the current state of health information technology (IT) progress. Recognized leaders in the field will moderate panels featuring the presentation of white papers offering varied views on the following topics:

  • Improvements in quality and efficiency
  • Engaging consumers and patients
  • Care coordination and chronic care management
  • Addressing financing issues
  • Increasing access and addressing disparities
  • Addressing privacy and confidentiality
Click here for additional conference information.

On Thursday, July 17, 2008, National Constitution Center Conferences is offering a 60-minute Live Audio Conference called “Electronic Health Records:  Keys To Compliance” during which I will discuss many of the legal issues, challenges and practical solutions to utilizing electronic health records. Some of the topics and questions I will cover include:

  • Electronic Health Records and Security under HIPAA
    • Keys to balancing access to EHRs with privacy & security
    • Medical Identity Theft Prevention laws & EHRs: How do state laws apply?
    • Evolving privacy & security standards of EHRs
  • Security Breaches: Avoid the Common Pitfalls
    • How to effectively respond when a security breach occurs
    • Security Breach Notification laws
    • Privacy Issues regarding access, wireless networking and HIPAA audits
  • Keys to Drafting Compliant EHR Management Policies
    • Ways employees can jeopardize patient data – and how to safeguard it
    • How should EHRs be stored and who should have access to them?
    • How often should your program be audited to ensure compliance?

The Audio Conference will also offer a LIVE Question and Answer session during which I will respond to questions posed by participants.  For more information on this live Audio Conference, visit www.constitutionconferences.com.

On April 3, 2008, I will be discussing some of the most common HIPAA misinterpretations and burning questions still out there at a Compliance Seminar organized and offered through the NJ Medical Society of New Jersey.   Among the specific questions I will cover are:

  • When can information be released to a patient’s relatives and friends?
  • Can medical records be released pursuant to a subpoena?
  • Is a HIPAA Business Associate Agreement required for all vendors?
  • Should medical records be taken home?
  • How long should I keep medical records? billing records? administrative records?
  • Do I have to notify patients of accidental disclosures?  What about security breaches?
  • What should I do if a HIPAA complaint is filed against my practice?
  • What are the benefits and risks with participating in a electronic health information exchange with a hospital or other provider?

For further information about the Compliance Seminar, visit: http://www.msnj.org/practicemanagers/Education.aspx