A HYBRID CONFERENCE AND INTERNET EVENT

A Virtual Online Event – Live and Archived

The Virtual Forty-Third National HIPAA Summit

VIRTUAL ONLINE EVENT LIVE AND ARCHIVED
March 11, 2026: AI Cyber Risk Professional (aiCRP) Training and Professional Certification Exam
March 18, 2026: HIPAA Summit Workforce Privacy Training
March 25, 2026: HIPAA Summit Workforce Security/Breach Training
April 1, 2026: HIPAA Summit Workforce Training: HIPAA Transactions, Operating Rules, and Critical Healthcare Data Exchange Issues

April 7-10, 2026: HIPAA Summit 43

Follow HIPAA Summit on:


KEYNOTE SPEAKERS

Michael Cimmino, MPH
Director, National Standards Group, Office of Healthcare Experience and Interoperability, Centers for Medicare & Medicaid Services, Washington, DC
Deven McGraw, JD, MPH, LLM
Chief Regulatory & Privacy Officer, Citizen Health; Cofounder and Lead, Data Stewardship & Data Sharing, Invitae; Former Deputy Director, Health Information Privacy, HHS Office for Civil Rights; Former Director, Health Privacy Project, Center for Democracy & Technology, Redwood City, CA
Jules Polonetsky, JD
Chief Executive Officer, Future of Privacy Forum; Former Chief Privacy Officer, SVP Consumer Advocacy, AOL; Former Chief Privacy Officer, DoubleClick; Former Commissioner, New York City Department of Consumer and Worker Protection; Former Member, New York State, Potomac, MD
Daniel J. Solove, JD
John Marshall Harlan Research Professor of Law, George Washington University Law School; Founder, TeachPrivacy; Author, The Digital Person: Technology and Privacy in the Information Age, Washington, DC

FEATURED FACULTY

David Blechman, MIS
Head of Operations, Thrive Health Tech/Thrive Mobile; Former Head of Operations, Asurion Health, Nashville, TN
Matthew Bourgeois, JD
Senior Legal Officer and Executive Director of Privacy, MD Anderson Cancer Center, Houston, TX
Ashley Casovan
Managing Director, AI Governance Center, International Association of Privacy Professionals; Former Executive Director, Responsible AI Institute, Edmonton, Canada
Fred H. Cate, JD
Executive Director, Information Accountability Foundation; Co-founder, Red Barn Strategy; Distinguished Professor and C. Ben Dutton Professor of Law and Senior Fellow, Center for Applied Cybersecurity Research, Indiana University, Bloomington, IN
Stan Crosley, JD, CIPP/US, CIPM
Founder and Managing Partner, Crosley Law Offices; Former Chief Privacy Officer, Eli Lilly; Co-founder and Former Chair, International Pharmaceutical and Medical Device Privacy Consortium, Fishers, IN
Terrence Cunningham, JD
Director, Administrative Simplification Policy, American Hospital Association, Chicago, IL
Auburn Daily, JD
California Region VP & General Counsel, CommonSpirit Health; Former Principal Counsel, Health Law and Medical Center Services, University of California, San Francisco, CA
Jodi Goldstein Daniel, JD, MPH
Partner, Wilson Sonsini Goodrich & Rosati; Former Assistant Professor Adjunct, Yale University School of Medicine; Former Senior Counsel for Health IT, HHS, Washington, DC
Beth Davis, PMP
Senior Manager of Operations, Veradigm Payerpath; Former Platinum Support Consultant, Payerpath, Allscripts, Columbia, SC
Donald DePass, JD
Counsel, Data, Privacy and Cybersecurity, Hogan Lovells, Washington, DC
Leo Espindle, MS, MBA
Chief Compliance and Privacy Officer, League; Former Principal Quality Engineer, Amgen, Providence, NH
Ammon R. Fillmore, JD, MHA
Associate Chief Legal Officer: Information & Technology, AdventHealth, Altamonte Springs, FL
Mark J. Fox, CHC ,CHPC, CHRC
Privacy and Research Compliance Officer, American College of Cardiology, Washington, DC
Milada Goturi, JD
Partner, Health Law, Data Privacy and Security, Thompson Coburn LLP, Washington, DC
Charles Hale, CISM, PMP, PMI-ACP
President & Founder, Hale Consulting Solutions LLC; Former Strategic Advisor, Cybersecurity Compliance, Vital eCare, Las Vegas, NV
John Haskell, JD, CIPP/US, CIPT
Privacy Consultant; Former HIPAA Privacy Officer, Medline Industries; Former Investigator, Office for Civil Rights, US Department of Health and Human Services, Topsham, ME
Blake Hay, JD
Privacy Officer, Wisconsin Dept of Health Services; Former Director of Quality & Compliance, Family Health La Clinica, Sun Prairie, WI
Thora A. Johnson, JD
Partner and Co-chair, Life Sciences Group, Orrick Herrington & Sutcliffe LLP, Washington, DC
Ashley Le Fleur
Vice President and Privacy Officer, ROOT3 Marketing and Business Development, Chicago, IL
Shannon Leonard, MBA
Chief Compliance Officer, Compliance Connections, LLC; Former Chief Compliance Officer, Cardiovascular Institute of the South, Broussard, LA
Natalie S. Lesnick, JD, CHC, CHPC
Health Care Compliance Counsel, Feldesman LLP; Former Corporate Compliance Team, BioMarin Pharmaceutical Inc., Arlington, VA
Jeff Leston, MBA
President and Chief Executive Officer, Castlestone Advisors LLC; Special Advisor, Yugen Partners, Edwardsville, IL
Michael J. Madderra, JD, CIPP/US
Associate, Morgan, Lewis & Bockius LLP; Co-author, HHS Proposes Major 2025 Update to HIPAA Security Rule, Seattle, WA
Heather McComas, PharmD
Director, Administrative Simplification Initiatives, American Medical Association, Chicago, IL
George Merix, MHA
Privacy Manager, Carilion Clinic, Salem, VA
Dawn Morgenstern, MBA, CHPC, CCSFP
Chief Privacy Officer and Senior Director of Consulting Services, Privacy and Compliance, Clearwater, Washington, DC
Demi-lee Mpati, MBA, LLM
Associate Consultant, Strategic Management Services; Former Compliance, Children’s National Hospital, Washington, DC
Uday Ali Pabrai, MSEE, CMMC (CCP, PA, PI, RPA), CISSP
Chief Executive, ecfirst, Inc., Irvine, CA
Elizabeth Pitman, JD
Partner, Holland & Knight; Board, Medical Properties Trust, Birmingham, AL
Denitsa Pocheva-Smith, JD
Vice President, Legal and Compliance, HIPAA Privacy Officer, Knowtion Health, Boston, MA

Hal Porter, CISSP, CCSP, C|CISO, Security+, CE
Director, Consulting Services, Clearwater Security; Former Vice President, Information Technology, Ambulatory Services of America, Inc., Atlanta, GA
Pamela Schafer Rayne, JD
Practice Group Leader & Chief Legal Counsel, HIPAA and Privacy, Johns Hopkins Medicine, Washington, DC
Wes Rhea, JD, MBA, CPC
Compliance Officer and HIPAA Privacy and Security Officer, Marigold Health, Marietta, GA
Aryn Subhawong, JD
Senior Technology Counsel, Tech & Innovation Law Group, HCA, Nashville, TN
Alya Sulaiman, JD
Privacy, Regulatory Affairs, and Compliance, Datavant; Former Director of Health Policy & Regulatory Affairs, Epic, Los Angeles, CA
Sydney Reed Swanson, JD
Associate, Morgan, Lewis & Bockius LLP; Co-author, HHS Proposes Major 2025 Update to HIPAA Security Rule, Houston, TX
Robert M. Tennant, MA
Executive Director, Workgroup for Electronic Data Interchange (WEDI); Former Director, HIT Policy, Medical Group Management Association, Washington, DC
Robbi Watnik, JD, CHPC
Senior Consultant, Strategic Management Services; Former Acting Executive Director, Office of Compliance and Business Integrity, Veterans' Health Administration, Clifton, VA
Erin Richter Weber, MS
Vice President, Council for Affordable Quality Healthcare (CAQH) and Committee on Operating Rules for Information Exchange (CORE), Washington, DC
Rebecca L. Williams, JD
Partner and Co-chair, Health Information and HIPAA Practice, Davis Wright Tremaine LLP, Seattle, WA
J. Veronica Xu
Chief Ethics and Compliance Officer and ADA Administrator, Saber Healthcare Group, Cleveland, OH

FEATURING AN EXPANDED VIRTUAL HIPAA WORKFORCE TRAINING CURRICULUM FOR GENERAL ETHICS AND COMPLIANCE PROFESSIONALS

Broadcast Live on the Dates Below and Available via The Summits Video Archive for 12 Months

This workforce training curriculum is deigned to be flexible and practical.
The curriculum will be available not only during the live broadcast dates, but also via the Summit video archive for 12 months following the Summit.

March 18, 2026: HIPAA Summit Workforce Privacy Training (Adam Greene, JD, Session Chair)

  • HIPAA Privacy Basics Overview
  • HIPAA Privacy Rule: Limits on Uses and Disclosures
  • HIPAA Privacy Rule: Individual's Privacy Rights
  • HIPAA Privacy Rule: Administrative Requirements
  • HIPAA Privacy Rule: Requirements on Business Associates
  • The Basics of 42 C.F.R. part 2
  • The Basics of the Information Blocking Rule
  • Overview of Basics of Relevant State Laws
  • Training Faculty Live Q&A

March 25, 2026: HIPAA Summit Workforce Security/Breach Training (Iliana Peters, JD, LLM, Session Chair)

  • HIPAA Security Rule Basics Overview
  • HIPAA Security Rule and NIST Guidance
  • HIPAA Security Rule: Administrative Safeguards especially Risk Analysis, Risk Management, and Security Reminders
  • HIPAA Security Rule: Technical Safeguards especially Access Controls, Audit, and Encryption
  • HIPAA Security Rule: Physical Safeguards especially Facility Security Plans
  • HIPAA Breach Notification Rule for Covered Entities
  • HIPAA Breach Notification Rule for Business Associates
  • HIPAA Enforcement of Security Incidents and Breaches
  • Training Faculty Live Q&A

April 1, 2026: HIPAA Summit Workforce Training: HIPAA Transactions, Operating Rules, and Critical Healthcare Data Exchange Issues (Rob Tennant, Session Chair)

  • HIPAA Administrative Simplification-Background and Overview
  • HIPAA Electronic Transactions and Identifiers
  • HIPAA Operating Rules
  • Current Health Data Exchange Issues (Health Equity, TEFCA, No Surprises Act)
  • The Future of Health Data Exchange
  • Training Faculty Live Q&A

HIPAA SUMMIT ATTENDEES SUPPORT A VIRTUAL SUMMIT WITH EXTENSIVE ONLINE HIPAA WORKFORCE TRAINING



FEATURING THE HIPAA SUMMIT ADVANCED VIRTUAL STREAMING PLATFORM