We use cookies to better understand how you use our site and to improve your experience by personalizing content. Please review our updated Privacy Policy and Terms of Use. If you accept the use of cookies, please click the "I accept" button.I acceptI declineX
Skip navigational links

Privacy and Cybersecurity Risk, Compliance and Enforcement Affinity Group

The Privacy and Cybersecurity Risk, Compliance and Enforcement Affinity Group provides health data risk management, privacy, and security knowledge exchange focused on HIPAA along with other federal and state privacy laws, audit and enforcement actions, cybersecurity best practices, and other developments in this field.


Image of ValerieMontague
Valerie B. Montague Chair Nixon Peabody LLP Chicago, IL (312) 977-4485 Email
Image of DeepaliDoddi
Deepali Doddi Vice Chair - Membership McDermott Will & Emery LLP Chicago, IL (312) 984-3265 Email
No image found
Adam H. Greene Vice Chair - Research & Website Davis Wright Tremaine LLP Washington, DC (202) 973-4213 Email
No image found
Matthew C. Henderson Vice Chair - Educational Programs Availity LLC Jacksonville, FL (904) 538-5480 Email
Image of ElizabethHodge
Elizabeth F. Hodge Vice Chair - Publications Akerman LLP West Palm Beach, FL (561) 273-5503 Email


You must be a member of the Health Information and Technology Practice Group or a government, academic, or student member, or have paid for all-Practice Groups access to enroll in this Affinity Group. You will remain a member as long as you are a member of its sponsoring Practice Group or maintain membership in one of the aforementioned membership categories.

To enroll in this Affinity Group (or if you are not a member of the sponsoring Practice Group(s) and would like to join now), please contact the Member Satisfaction Center at or (202) 833-1100, #2 or complete and return the enrollment form.

Special Resource: OCR/FTC HIT Enforcement Summary Table

Published on October 24, 2017

The table provides a summary of findings by the OCR regarding the violation of HIPAA privacy and security regulations by covered entities from July 2008-May 2017 (in two cases, findings were made and corrective action was taken by the FTC). The table provides information about the nature of the covered entity’s breach, OCR’s findings, the corrective action plans, and the resolution and/or the civil money penalty amount imposed on the breaching entity.

© 2018 American Health Lawyers Association. All rights reserved. 1620 Eye Street NW, 6th Floor, Washington, DC 20006-4010 P. 202-833-1100 F. 202-833-1105