![Alaap Shah Attorney Healthcare Life Sciences](https://www.natlawreview.com/sites/default/files/styles/author_profile/public/images/Shah_A_Main1-default-headshot-photo-21493.jpg?itok=RF1kv-TI)
Alaap B. Shah is a Member of the Firm in the Health Care and Life Sciences practice, in the firm's Washington, DC, office.
Mr. Shah:
- Advises clients on federal and state privacy and data security laws and regulations
- Advises on cybersecurity and data breach matters
- Advises clients on health care fraud and abuse matters and government investigations relating to health information technology
- Counsels clients on digital health and data strategies and related compliance issues
His work focuses on defense and counseling of health care entities on legal and regulatory compliance issues. He has extensive experience with legal issues related to health information technology, HIPAA, HITECH, anti-kickback laws, the False Claims Act, breach of contract issues, business torts, and a variety of unfair competition laws. He has established compliance programs, conducted privacy and security risk assessments, established trust networks, responded to data breaches, and managed e-discovery issues.
Mr. Shah is a Certified CSF Practitioner, a designation given by the Health Information Trust Alliance (HITRUST), an organization that provides training to develop and maintain effective security programs for health care and life sciences companies that comply with security laws, regulations, and standards, including HITECH, HIPAA, PCI, JCAHO, CMS, ISO, NIST, and various other federal, state, and business requirements. He is also recognized by the Healthcare Information and Management Systems Society (HIMSS) as a Certified Professional in Healthcare Information and Management Systems (CPHIMS). Mr. Shah is also recognized by the International Association of Privacy Professionals (IAPP) as a Certified Information Privacy Professional in the United States.
Mr. Shah began his legal career at Epstein Becker Green. Before rejoining the firm in October 2017, he served as Senior Counsel and Chief Privacy and Security Officer at an oncology membership society where he strengthened enterprise-wide privacy and security, helped establish a big data initiative focused on improving quality of care by harnessing cancer patient medical information, and built data sharing trust networks among the oncology community.
During law school, Mr. Shah worked with the U.S. Department of Health and Human Services (DHHS), Office of General Counsel, where he provided legal counsel and support to all agencies and programs under the Public Health Division of DHHS. Prior to law school, Mr. Shah worked as a research technician at cancer treatment and research institution in New York City, where he helped manage a laboratory and conducted cancer immunology research, and his contributions led to the publication of 13 journal articles.
More Legal and Business Bylines From Alaap B. Shah
- Annual Breach Reporting Required Under NY SHIELD Act for Some Health Care Companies - (Posted On Friday, February 28, 2020)
- Data Privacy: What to Watch in 2020 - (Posted On Monday, January 27, 2020)
- CMS’s Request for Information Provides Additional Signal That AI Will Revolutionize Healthcare - (Posted On Monday, October 28, 2019)
- Privacy Concerns Loom as Direct-to-Consumer Genetic Testing Industry Grows - (Posted On Friday, June 28, 2019)
- Artificial Intelligence: A Potential Cybersecurity Safeguard or Viable Threat to the Healthcare Industry? - (Posted On Thursday, March 21, 2019)
- Follow the Leader: California Paves the Way for other States to Strengthen Privacy Protections - (Posted On Thursday, March 07, 2019)
- Erosion of Anonymity: Mitigating the Risk of Re-identification of De-identified Health Data - (Posted On Thursday, February 28, 2019)
- CMS and ONC Tag Team to Promote Sharing of Patient Data - (Posted On Thursday, February 21, 2019)
- The Rise of the Chief Data Officer - (Posted On Wednesday, February 13, 2019)
- Free the Data! . . . Better Think Twice . . . . Legal Issues regarding Data Sharing and Secondary Data Use - (Posted On Monday, February 04, 2019)