KEYNOTE SPEAKERS
Deven McGraw, JD, MPH, LLM
Chief Regulatory & Privacy Officer, Citizen Health; Cofounder and Lead, Data Stewardship & Data Sharing, Invitae; Former Deputy Director, Health Information Privacy, HHS Office for Civil Rights; Former Director, Health Privacy Project, Center for Democracy & Technology, Redwood City, CA
Jules Polonetsky, JD
Chief Executive Officer, Future of Privacy Forum; Former Chief Privacy Officer, SVP Consumer Advocacy, AOL; Former Chief Privacy Officer, DoubleClick; Former Commissioner, New York City Department of Consumer and Worker Protection; Former Member, New York State, Potomac, MD
Daniel J. Solove, JD
John Marshall Harlan Research Professor of Law, George Washington University Law School; Founder, TeachPrivacy; Author, The Digital Person: Technology and Privacy in the Information Age, Washington, DCFEATURED FACULTY
Ashley Casovan
Managing Director, AI Governance Center, International Association of Privacy Professionals; Former Executive Director, Responsible AI Institute, Edmonton, Canada
Fred H. Cate, JD
Executive Director, Information Accountability Foundation; Co-founder, Red Barn Strategy; Distinguished Professor and C. Ben Dutton Professor of Law and Senior Fellow, Center for Applied Cybersecurity Research, Indiana University, Bloomington, IN
Stan Crosley, JD, CIPP/US, CIPM
Founder and Managing Partner, Crosley Law Offices; Former Chief Privacy Officer, Eli Lilly; Co-founder and Former Chair, International Pharmaceutical and Medical Device Privacy Consortium, Fishers, IN
Leo Espindle, MS, MBA
Chief Compliance and Privacy Officer, League; Former Principal Quality Engineer, Amgen, Providence, NH
Milada Goturi, JD
Partner, Health Law, Data Privacy and Security, Thompson Coburn LLP, Washington, DC
Charles Hale, CISM, PMP, PMI-ACP
President & Founder, Hale Consulting Solutions LLC; Former Strategic Advisor, Cybersecurity Compliance, Vital eCare, Las Vegas, NV
Blake Hay, JD
Privacy Officer, Wisconsin Dept of Health Services; Former Director of Quality & Compliance, Family Health La Clinica, Sun Prairie, WI
Natalie S. Lesnick, JD, CHC, CHPC
Health Care Compliance Counsel, Feldesman LLP; Former Corporate Compliance Team, BioMarin Pharmaceutical Inc., Arlington, VA
Jeff Leston, MBA
President and Chief Executive Officer, Castlestone Advisors LLC; Special Advisor, Yugen Partners, Edwardsville, IL
Michael J. Madderra, JD, CIPP/US
Associate, Morgan, Lewis & Bockius LLP; Co-author, HHS Proposes Major 2025 Update to HIPAA Security Rule, Seattle, WA
Demi-lee Mpati, MBA, LLM
Associate Consultant, Strategic Management Services; Former Compliance, Children’s National Hospital, Washington, DC
Uday Ali Pabrai, MSEE, CMMC (CCP, PA, PI, RPA), CISSP
Chief Executive, ecfirst, Inc., Irvine, CA
Wes Rhea, JD, MBA, CPC
Compliance Officer and HIPAA Privacy and Security Officer, Marigold Health, Marietta, GA
Sydney Reed Swanson, JD
Associate, Morgan, Lewis & Bockius LLP; Co-author, HHS Proposes Major 2025 Update to HIPAA Security Rule, Houston, TX
Robert M. Tennant, MA
Executive Director, Workgroup for Electronic Data Interchange (WEDI); Former Director, HIT Policy, Medical Group Management Association, Washington, DC
Robbi Watnik, JD, CHPC
Senior Consultant, Strategic Management Services; Former Acting Executive Director, Office of Compliance and Business Integrity, Veterans' Health Administration, Clifton, VA
Rebecca L. Williams, JD
Partner and Co-chair, Health Information and HIPAA Practice, Davis Wright Tremaine LLP, Seattle, WAFEATURING AN EXPANDED VIRTUAL HIPAA WORKFORCE TRAINING CURRICULUM FOR GENERAL ETHICS AND COMPLIANCE PROFESSIONALS
Broadcast Live on the Dates Below and Available via The Summits Video Archive for 12 Months
This workforce training curriculum is deigned to be flexible and practical.
The curriculum will be available not only during the live broadcast dates, but also via the Summit video archive for 12 months following the Summit.
March 18, 2026: HIPAA Summit Workforce Privacy Training (Adam Greene, JD, Session Chair)
- HIPAA Privacy Basics Overview
- HIPAA Privacy Rule: Limits on Uses and Disclosures
- HIPAA Privacy Rule: Individual's Privacy Rights
- HIPAA Privacy Rule: Administrative Requirements
- HIPAA Privacy Rule: Requirements on Business Associates
- The Basics of 42 C.F.R. part 2
- The Basics of the Information Blocking Rule
- Overview of Basics of Relevant State Laws
- Training Faculty Live Q&A
March 25, 2026: HIPAA Summit Workforce Security/Breach Training (Iliana Peters, JD, LLM, Session Chair)
- HIPAA Security Rule Basics Overview
- HIPAA Security Rule and NIST Guidance
- HIPAA Security Rule: Administrative Safeguards especially Risk Analysis, Risk Management, and Security Reminders
- HIPAA Security Rule: Technical Safeguards especially Access Controls, Audit, and Encryption
- HIPAA Security Rule: Physical Safeguards especially Facility Security Plans
- HIPAA Breach Notification Rule for Covered Entities
- HIPAA Breach Notification Rule for Business Associates
- HIPAA Enforcement of Security Incidents and Breaches
- Training Faculty Live Q&A
April 1, 2026: HIPAA Summit Workforce Training: HIPAA Transactions, Operating Rules, and Critical Healthcare Data Exchange Issues (Rob Tennant, Session Chair)
- HIPAA Administrative Simplification-Background and Overview
- HIPAA Electronic Transactions and Identifiers
- HIPAA Operating Rules
- Current Health Data Exchange Issues (Health Equity, TEFCA, No Surprises Act)
- The Future of Health Data Exchange
- Training Faculty Live Q&A
