Ms. Chestler serves as the chair of the Data Protection, Privacy and Cybersecurity Team at Baker Donelson. She concentrates her practice in privacy, security and information management issues including compliance, contract negotiation and corporate transactions matters. She joined Baker Donelson after a distinguished career as in-house counsel and privacy officer to several large public and private companies. Ms. Chestler is a Certified Information Privacy Professional: United States (CIPP/US) and has also attained certification as a Qualified Technology Expert (QTE).
Ms. Chestler serves as a trusted advisor to clients and routinely counsels clients on their technology and data strategy with a strong base in digital health, life science and general health care. She routinely counsels clients on technology, data privacy and security matters that arise from federal and state laws, including HIPAA, the California Consumer Privacy Act (CCPA), GLB, FCRA/FACTA, FERPA, state data breach laws and the Payment Card Industry (PCI-DSS) requirements. Ms. Chestler also counsels clients on global data protection laws, including the General Data Protection Regulation (GDPR) and the Personal Information Protection and Electronic Documents Act (PIPEDA). She has significant experience assisting companies in developing comprehensive privacy and security programs and working with management to identify risk management issues, many times in anticipation of corporate transactions. She assists clients in identifying, evaluating and managing risks associated with privacy and information security practices of companies and third party service providers. Ms. Chestler also counsels clients regarding incident response programs including the development of the incident response plan, investigation and response.
Ms. Chestler drafts and negotiates technology agreements including Master Services Agreements (MSAs), software license agreements, Software as a Service (SaaS) agreements, and professional services agreements.
Ms. Chestler routinely assists clients in complex health information and technology issues including the negotiation of complex information technology and partnership agreements, including health information exchange (HIE) participation, EHR negotiation, data use agreements, blockchain, artificial intelligence (AI), adoption and compliance with HITECH and meaningful use requirements, and the interoperability and information blocking regulations. She assists digital health and consumer application companies in navigating the complexities of health care technology strategy, agreements and compliance concerns. Follow her on Twitter @alchestler.