We frequently advise healthcare providers on the Federal and State statutes and regulations affecting the privacy and security of individuals' protected health information, including HIPAA and the new requirements under the HITECH Act. We proactively advise clients to protect the privacy and security of this information, and if need be, how to best mitigate risk when the security of individually identifiable health information is breached. We routinely develop and implement privacy policies and procedures for a wide range of providers -- ranging from large hospital systems to private physician group offices. We also draft business associate agreements, patient privacy notifications, and information release authorizations. We use our considerable expertise to promptly troubleshoot issues that arise relating to authorizations, records requests, and personal representatives. We also are frequently involved in administrative and civil litigation regarding privacy issues.