Quick Results
Professional Photo
Professionals

Alisa L. Chestler, CIPP/US

Shareholder
Nashville
T: 615.726.5589
F: 615.744.5589
Washington, D.C.
T: 202.508.3400
F: 202.508.3402

Alisa Chestler, shareholder in the Nashville and Washington, D.C. offices of Baker Donelson, is chair of the Firm's Data Protection, Privacy and Cybersecurity Team and a Certified Information Privacy Professional.

Featured Videos

Part I – So You Think GDPR Does Not Apply to American Companies? Think Again. January 17, 2018
Create a Business Continuity Plan Before Disaster Strikes April 7, 2017
It's Not Just FERPA: Privacy and Security Issues in Higher Education April 21, 2015

Featured Experience

Assisted large hospital system in identifying cybersecurity issues and negotiation of asset purchase agreement and closing conditions.

Counseled emerging company on privacy and security issues prior to initial capital raise.

Represented a regional Texas medical center, negotiating a $54 million electronic medical record software license and implementation services agreement with Epic Systems.

2016

Professional Biography

Overview

Ms. Chestler concentrates her practice in privacy, security and records management issues; health care and insurance regulatory compliance; and corporate transactions matters. She joined Baker Donelson after a distinguished career as in-house counsel and privacy officer to several large public and private companies.

Ms. Chestler routinely counsels clients on data privacy and security matters that arise from federal and state laws, including HIPAA, HITECH, GLB, FCRA/FACTA, state data breach laws and the Payment Card Industry (PCI-DSS) requirements. Ms. Chestler also counsels clients on global data protection laws, including the General Data Protection Regulation (GDPR). She has significant experience assisting companies in developing comprehensive privacy and security programs and working with Management to identify risk management issues, many times in anticipation of corporate transactions. She assists clients in identifying, evaluating and managing risks associated with privacy and information security practices of companies and third party service providers. 

She routinely drafts and  negotiates information security addendum and  business associate agreements, develops compliance policies and procedures, and advises clients on data breaches and notification obligations.

Ms. Chestler assists clients with negotiating complex information technology and partnership agreements, including health information exchange (HIE) participation, EHR negotiation, blockchain, adoption and compliance with HITECH and meaningful use requirements, and audits. She has also assisted clients in analyzing and negotiating cloud computing issues and agreements.

Ms. Chestler has counseled providers, managed care organizations, insurers, third-party administrators, self-funded employers and health care specialty organizations on regulatory, compliance and operational issues. Follow her on Twitter @alchestler.

Representative Matters
  • Assisted large hospital system in identifying cybersecurity issues and negotiation of asset purchase agreement and closing conditions.

  • Counseled emerging company on privacy and security issues prior to initial capital raise.

  • Represented a regional Texas medical center, negotiating a $54 million electronic medical record software license and implementation services agreement with Epic Systems.

Professional Honors & Activities
  • Listed in Washington, D.C. Super Lawyers in the area of Health Care (2012 – 2018)
  • Member – American Health Lawyers Association
    • Health Information and Technology Practice Group - Chair (2018 – Present)
    • Health Information and Technology Practice Group - Vice Chair (2015 – 2018)
    • Health Information and Technology Practice Group - Leadership Development (2014 – 2015)
  • Member – International Association of Privacy Professionals
  • Member – Health Care Compliance Association 
  • Chair – Compliance Committee, The Care Continuum Alliance (2009 – 2013)
  • Member – American Health Information Management Association
    • Practice Council on Health Information Exchange (2012 – 2014)
Publications
Speaking Engagements
  • "AHLA Physicians and Hospitals Law Institute" (February 4, 2019)
  • "Wrap It Up" (December 2018)
  • "Cyber Security," 68th Annual Southeastern Association of Tax Administrators Conference, Nashville, Tennessee (July 2018)
  • "Get the 411- Keeping the Information Technology Elements of Your Transactions Online," AHLA Health Care Transactions Conference, Nashville, Tennessee (May 2018)
  • Panelist – "Code Talkers and Cyber Security - What Do They Have in Common?," Tennessee HIMSS Cybersecurity Breakfast, Nashville, Tennessee (October 2017)
  • "Cybercon 2017" (October 2017)
  • Panelist – "The Role of Lawyers in Cybersecurity," Homeland Security Law Institute, George Washington University, Washington D.C. (September 2017)
  • "What's Now and What's Next in the Telehealth Industry: Utilize Technological Advances to Minimize Risk," Bloomberg BNA, Washington, D.C. (September 2017)
  • "Cybersecurity for the C-Suite and Management" (August 2017)
  • "Blockchain, IoT. . . Around the World in Health Information Technology," AHLA Annual Meeting, San Francisco, California (June 2017)
  • Panelist – "Business Case for Cybersecurity | Managing the Risk of Insecurity," Nashville Cybersecurity Conference (June 2017)
  • "Beyond the Water Cooler: Social Media Best Practices for Your Workplace" (January 2017)
  • "Welcome to the Future: Telemedicine and HIPAA HITECH ," 2016 Long Term Care Symposium (November 2016)
  • "Cyber & Information Security Consortium Fall Meeting" (October 2016)
  • "Cyber Threats to Your Business" (October 2016)
  • "Cybercon 2016" (September 2016)
  • Moderator – "Healthcare & Interoperability: What does interoperability mean to health care? Why is it so crucial to the next level of providing safe and effective health care?," 2016 SEUS-CP Conference, Nashville, Tennessee (May 2016)
  • Panelist – "Why U.S. - Turkey Partnerships? Opportunities and Challenges," U.S. Turkey Investment Partnership Summit (February 2016)
  • "Commercial and Government Procurement/RFP Process," Israel Defense Cybersecurity Conference (January 2016)
  • "HIT or Miss? Legal and Ethical Concerns for Implementation of Health IT," Nashville Council of Health Care Attorneys CLE Program (November 2015)
  • "The Rise of Health Care Technology: ERM Implications for the New Normal," American Health Lawyers Association, Enterprise Risk Management Task Force Educational Webinar (October 2015)
  • Panelist – "Under Disruption: Why Health IT is Out of Control," Summit of the Southeast, Tennessee HIMSS Annual Meeting (September 2016)
  • "EHR Standards: HIE, Meaningful Use, and Patient Portals: What Your Lawyers Are Worried About," American Health Information Management Association National Convention (September 2015)
  • Moderator – "U.S. Federal Policy and Cyber Legislation and Regulation: What It Means for Your Business," and "Cybersecurity: Business Challenges and the Future," Securing Your Future: Staying Ahead of Developments in Cybersecurity and its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Moderator – "The Role of State Governments in Cybersecurity," Securing Your Future: Staying Ahead of Developments in Cybersecurity and its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Panelist – "Fighting Hack Attacks and Data Breaches: A Booming Climate for Investors," Securing Your Future: Staying Ahead of Developments in Cybersecurity and its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Panelist – "Defending the Grid: Latest Threats and How They Can Be Avoided," Securing Your Future: Staying Ahead of Developments in Cybersecurity and its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • Moderator – "Cyber Liability Coverage and Insurance," Securing Your Future: Staying Ahead of Developments in Cybersecurity and its Impact on Technology, Advanced Manufacturing, Logistics, Health Care and Energy, Atlanta, Georgia (August 2015)
  • "Cybersecurity Forum with Israel and the American South," Atlanta, Georgia (August 2015)
  • Panelist – "The Background Singers: How Other Industries Affect Hotels," 2015 Hotel Data Conference (August 2015)
  • "Health Care Technology: New Regulations and Impact of HIPAA," Nashville Bar Association CLE Program (August 2015)
  • "Data Security and Privacy Essentials for an Unsecure World" (October 2014)
  • Moderator – "Part III: HIT and Data Sharing Issues for the ACO," Accountable Care Organization Bootcamp Webinar Series (March 2013)
  • Panelist – "The Future of Exchanges," Mississippi Insurance Department's Health Care Reform Symposium (December 2012)
In the News

Email Disclaimer

NOTICE: The mailing of this email is not intended to create, and receipt of it does not constitute an attorney-client relationship. Anything that you send to anyone at our Firm will not be confidential or privileged unless we have agreed to represent you. If you send this email, you confirm that you have read and understand this notice.
Cancel Accept