Skip to Main Content
  • Professionals
  • Practices
  • Industries
  • Experience
  • News & Events





Quick Results
View More Results
Search
Professional Photo
Professionals

Alisa L. Chestler, CIPP/US, QTE

Shareholder
Nashville
T: 615.726.5589
F: 615.744.5589
Washington, D.C.
T: 202.508.3475
F: 202.508.3402
Email Professional Download vCard Download Hi-Res Photo Download Bio Twitter Profile

Alisa Chestler concentrates her practice in privacy, security, and information management issues; artificial intelligence; health information and technology; health care and managed care regulatory issues; and corporate transactions matters.

Featured Experience

Assisted a large hospital system in identifying cybersecurity issues and negotiation of an asset purchase agreement and closing conditions.

Counseled an emerging company on privacy and security issues prior to its initial capital raise.

Represented an academic medical center in negotiating a $400 million electronic medical record software license and implementation services agreement with Epic Systems.

Professional Biography

Ms. Chestler serves as the chair of the Data Protection, Privacy and Cybersecurity Team at Baker Donelson. She concentrates her practice in privacy, security, artificial intelligence (AI), and information management issues, including compliance, contract negotiation, and corporate transactions matters. She joined Baker Donelson after a distinguished career as in-house counsel and privacy officer for several large public and private companies, including several managed care organizations and health care companies. Ms. Chestler is a Certified Information Privacy Professional: United States (CIPP/US) and has also attained certification as a Qualified Technology Expert (QTE).

In her practice, Ms. Chestler serves as a trusted advisor to clients and routinely counsels them on their technology and data strategy, with a strong base in digital health, life science, and general health care. She counsels clients on technology, data privacy, and security matters that arise from federal and state laws, including the Health Insurance Portability and Accountability Act (HIPAA), California Consumer Privacy Act (CCPA), Gramm-Leach-Bliley Act (GLB), Fair Credit Reporting Act, Fair and Accurate Credit Transactions Act, Family Educational Rights and Privacy Act (FERPA), state data breach laws, and the General Data Protection Regulation (GDPR). Ms. Chestler also counsels clients on AI issues and negotiations and assists in developing their governance programs. She has significant experience assisting companies in developing comprehensive privacy and security programs and working with management to identify risk management issues, many times in anticipation of corporate transactions. She assists clients in identifying, evaluating, and managing risks associated with privacy and information security practices of companies and third-party service providers. Ms. Chestler also counsels clients regarding incident response programs, including the development of the incident response plan, investigation, and response.

Ms. Chestler drafts and negotiates technology agreements, including Master Services Agreements (MSAs), software license agreements, Software as a Service (SaaS) agreements, and professional services agreements, and oversees a team of attorneys skilled in such negotiations.

She routinely assists clients in complex health information and technology issues, including the negotiation of complex information technology and partnership agreements such as health information exchange (HIE) participation, electronic health record (EHR) negotiation, and data use agreements. she also advises on adoption of and compliance with the increasing number of state laws regarding personal health data, and interoperability and information-blocking regulations. She assists digital health and consumer application companies in navigating the complexities of health care technology strategy, agreements, and compliance concerns.

Ms. Chestler worked as in-house counsel for more than 15 years for several managed care organizations, including CareFirst BlueCross Blue Shield.

Follow her on X @alchestler.

  • Leads a team of attorneys in the negotiation of technology agreements for a global company in the life sciences industry, averaging nearly 100 negotiations per year.

  • Assisted a large hospital system in identifying cybersecurity issues and negotiation of an asset purchase agreement and closing conditions.

  • Counseled an emerging company on privacy and security issues prior to its initial capital raise.

  • Represented an academic medical center in negotiating a $400 million electronic medical record software license and implementation services agreement with Epic Systems.

  • Provided strategic and legal counseling for an international consumer application's entrance into the health market.

  • Listed in The Best Lawyers in America® for Health Care Law (2025)
  • Listed in Washington, D.C. Super Lawyers in the area of Health Care (2012 – 2024); Technology Transactions (2023)
  • Member – Leadership Health Care (LHC) Leadership Cohort, Nashville Health Care Council (2024)
  • Member – American Health Law Association
    • Health Information and Technology Practice Group – Chair (2018 – 2021)
    • Health Information and Technology Practice Group – Vice Chair (2015 – 2018)
    • Health Information and Technology Practice Group – Leadership Development (2014 – 2015)
  • Member – International Association of Privacy Professionals
  • Member – Health Care Compliance Association 
  • Member – Tulane Family Leadership Council (2022 – present) 
  • Chair – Compliance Committee, The Care Continuum Alliance (2009 – 2013)
  • Member – American Health Information Management Association
    • Practice Council on Health Information Exchange (2012 – 2014)
  • "Evolving Healthcare Technologies: Legal Challenges in AI, Regulation, and Data Privacy," Vanderbilt Journal of Entertainment and Technology Law Symposium (February 2025)
  • "B2B AI Technology Services Negotiations: Unique Issues in Negotiating Health Care AI Technology Services from Vendor and End-User Perspectives," AHLA – The Complexities of AI in Health Care (February 2025)
  • Panelist – "The Difference Between Security and Privacy and Their Partnership," 2024 Nashville Innovation Summit (October 2024)
  • "Running Legal Like a Business," LegalOps (September 2024)
  • "Critical Incident Response Considerations: How to Prepare for and Respond to a Cyber Attack," Co.Mobility Summit Workshop (May 2024)
  • "Tech Talks: Critical Incident Response Considerations" (April 2024)
  • Panelist – "Cybersecurity: Pre-Breach Preparedness," LeadingAge webinar (October 2023)
  • "North Alabama International Trade Association Roundtable: Weaponizing Cyber: How China, Russia and other Nation States Are Undermining Our Democracy and National Security" (August 2023)
  • "Health Care Strategy: Data and Cyber Considerations," AHLA Long Term Care Meeting (March 2023)
  • Moderator – "Privacy and Security Risk Management: Securing Your Enterprise and Beyond," 2022 Baker Donelson Long Term Care Symposium (November 2022)
  • "Don't Let a Cyber Quarantine Wreck Your Transaction/Reps and Warranties and Risk Analysis: A Growing Trend," AHLA Health Law Transactions Meeting (April 2022)
  • "The Law & Cyber Security: What Those in Trucking Need to Know," American Trucking Association (July 2020)
  • "Unblocking Information - Industry Collaboration on Interoperability Model Contract Terms," AHLA Annual Meeting (July 2020)
  • "Corporate Counsel 2020: How to Cyber-Proof Your Transaction - Privacy and Security Considerations," Tennessee Bar Association (May 2020)
  • "Avoiding Cyber-Collisions- Don't Let Cyber Issues Wreck Your Transaction," AHLA Transactions Meeting (April 2020)
  • "Crafting a Company's Privacy Regime to Meet Global Requirements," Georgetown Law 16th Annual Advanced eDiscovery Institute, Washington, D.C. (November 2019)
  • "How the C-Suite, Board, & CISO Can Communicate Better," Cybercon 2019 (September 2019)
  • "Cyberproof Your Transaction – Avoid Letting Cyber Issues Derail Your Transaction," 2019 AHLA Transactions Conference (May 2019)
  • "Cyber Security," 68th Annual Southeastern Association of Tax Administrators Conference, Nashville, Tennessee (July 2018)
  • "Get the 411– Keeping the Information Technology Elements of Your Transactions Online," AHLA Health Care Transactions Conference, Nashville, Tennessee (May 2018)
  • Panelist – "Code Talkers and Cyber Security – What Do They Have in Common?," Tennessee HIMSS Cybersecurity Breakfast, Nashville, Tennessee (October 2017)
  • "What's Now and What's Next in the Telehealth Industry: Utilize Technological Advances to Minimize Risk," Bloomberg BNA, Washington, D.C. (September 2017)
  • "Blockchain, IoT. . . Around the World in Health Information Technology," AHLA Annual Meeting, San Francisco, California (June 2017)
  • Panelist – "Business Case for Cybersecurity | Managing the Risk of Insecurity," Nashville Cybersecurity Conference (June 2017)
  • "Welcome to the Future: Telemedicine and HIPAA HITECH," 2016 Long Term Care Symposium (November 2016)
  • Panelist – "Under Disruption: Why Health IT is Out of Control," Summit of the Southeast, Tennessee HIMSS Annual Meeting (September 2016)
  • Moderator – "Healthcare & Interoperability: What does interoperability mean to health care? Why is it so crucial to the next level of providing safe and effective health care?," 2016 SEUS-CP Conference, Nashville, Tennessee (May 2016)
  • "Commercial and Government Procurement/RFP Process," Israel Defense Cybersecurity Conference (January 2016)
  • "HIT or Miss? Legal and Ethical Concerns for Implementation of Health IT," Nashville Council of Health Care Attorneys CLE Program (November 2015)
  • "The Rise of Health Care Technology: ERM Implications for the New Normal," American Health Law Association, Enterprise Risk Management Task Force Educational Webinar (October 2015)
  • "EHR Standards: HIE, Meaningful Use, and Patient Portals: What Your Lawyers Are Worried About," American Health Information Management Association National Convention (September 2015)
  • Moderator – "U.S. Federal Policy and Cyber Legislation and Regulation: What It Means for Your Business," and "Cybersecurity: Business Challenges and the Future," Securing Your Future: Staying Ahead of Developments in Cybersecurity and Its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Moderator – "The Role of State Governments in Cybersecurity," Securing Your Future: Staying Ahead of Developments in Cybersecurity and its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Panelist – "Fighting Hack Attacks and Data Breaches: A Booming Climate for Investors," Securing Your Future: Staying Ahead of Developments in Cybersecurity and Its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Panelist – "Defending the Grid: Latest Threats and How They Can Be Avoided," Securing Your Future: Staying Ahead of Developments in Cybersecurity and Its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Moderator – "Cyber Liability Coverage and Insurance," Securing Your Future: Staying Ahead of Developments in Cybersecurity and Its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • "Health Care Technology: New Regulations and Impact of HIPAA," Nashville Bar Association CLE Program (August 2015)
  • Moderator – "Part III: HIT and Data Sharing Issues for the ACO," Accountable Care Organization Bootcamp Webinar Series (March 2013)

Practices

Industries

Education

  • Hofstra University School of Law, J.D., 1994
  • Ithaca College, B.A., 1991

Admissions

  • Connecticut, 1994
  • District of Columbia, 1996
  • Tennessee, 2017

Featured Media

DOJ Final Rule Applies to Anonymized, Pseudonymized, and De-Identified Data: What Data Licensors Need to Know
Publication / April 29, 2025
DOJ Issues Additional Guidance and Clarification on the Bulk Data Transfer Rule: What U.S. Businesses Need to Know
Publication / April 22, 2025
DOJ Final Rule Targets Cross-Border Data Transfers: Key Implications for U.S. and Foreign-Owned Companies Operating in the U.S.
Publication / April 8, 2025

Search By Last Name

ABCDEFGHIJKLMNOPQRSTUVWXYZ
The Howard Baker Forum The Daschle Group
Instagram LinkedIn
Baker Donelson is a national law firm with more than 700 attorneys and public policy advisors representing more than 30 practice areas to serve a wide range of legal needs. Clients receive knowledgeable guidance from experienced, multi-disciplined industry and client service teams, all seamlessly connected across more than 20 offices in Alabama, Florida, Georgia, Louisiana, Maryland, Mississippi, New Jersey, North Carolina, South Carolina, Tennessee, Texas, Virginia, and Washington, D.C.
©2025 Baker, Donelson, Bearman, Caldwell & Berkowitz, PC

Email Disclaimer

NOTICE: The mailing of this email is not intended to create, and receipt of it does not constitute an attorney-client relationship. Anything that you send to anyone at our Firm will not be confidential or privileged unless we have agreed to represent you. If you send this email, you confirm that you have read and understand this notice.
Cancel Accept