Julie Veldman Harris is an attorney in the Columbus office of Barnes & Thornburg LLP, and a member of the firm’s Healthcare and Corporate departments as well as the Data Security and Privacy Practice Group. Ms. Harris delivers guidance on a wide-range of healthcare and general corporate legal issues, concentrating her practice on representing healthcare providers in all of their transactional and healthcare regulatory law needs.
Ms. Harris counsels businesses and organizations in relation to a variety of healthcare services and providers, including pharmacy, wholesale drug distribution, provider practices, and physician practice management companies and arrangements. Ms. Harris also serves as business counsel for healthcare and general corporate entities, including for contract drafting and negotiation, mergers, acquisitions, asset and stock transactions and joint ventures. She is routinely engaged to advise clients on healthcare regulatory matters on a state and national level, including HIPAA, healthcare provider restrictive covenants, corporate practice of medicine, scope of practice for licensed healthcare providers, and pharmacy and wholesale drug distributor regulatory compliance, including ongoing guidance in relation to provider implementation of the FDA Drug Supply Chain Security Act (DSCSA) track and trace requirements.
In the area of data security and privacy, Ms. Harris counsels businesses and organizations on regulatory and compliance matters. She also assists clients in the event of a data breach. Ms. Harris advises clients on a state and national level, including advising companies on HIPAA compliance and assisting companies to minimize their exposure to data security and privacy risks. She works with clients to manage risk by training personnel and developing policies and procedures to ensure compliance with state and federal privacy laws and regulations. Ms. Harris drafts and negotiates agreements such as business associate agreements and confidentiality agreements. She also assists clients in determining whether a data breach has occurred and, in the event of such breach, assists clients in fulfilling any reporting and notification obligations while simultaneously counseling the client on the steps necessary to minimize negative publicity resulting from the breach.