Carolyn Metnick focuses her practice on health information privacy and security. She helps covered entities and business associates develop effective policies, procedures and workforce training to comply with HIPAA and the HITECH Act. She also counsels businesses in data breach investigations and compliance with other federal and state breach notification laws, and assists businesses in responding to cyberattacks and other security breaches.
Carolyn also advises healthcare providers on transactions and business issues. She guides clients through joint ventures, mergers and acquisitions, and counsels on governance matters as well as regulatory issues. She advises on compliance with the federal fraud and abuse laws, including the Stark Law and the Anti-Kickback Statute. Carolyn’s background as a former litigator helps inform her transactional work.
American Arbitration Association Panel of Arbitrators, panelist
American Heart Association Go Red for Women Campaign, executive leadership team member, 2018 to present
American Health Lawyers Association, Transactions Program Planning Committee, 2018 to present; Business Law & Governance Practice Group, vice chair, 2012 to 2018; Governance Affinity Group, co-chair, 2009 to 2012
Illinois Association of Healthcare Attorneys, president, 2019; board member, 2014 to present