Skip to Main Content
Services Talent Knowledge
Site Search
Menu

BridgetSteele

She | Her | Hers

Associate

"My goal is to understand each client's unique mission in the dynamic health care field so I can best provide tailored, practical legal counsel."

Overview

Biography

Bridget concentrates her practice on assisting health care and human services providers with regulatory and compliance matters, including audits and investigations, self-disclosures, Medicaid and Medicare reimbursement issues, not-for-profit corporate governance, contract analysis and negotiation, and transactional matters.

Bridget has extensive experience working with behavioral health providers, home care agencies, health information exchanges (HIEs), hospitals, agencies that serve individuals with developmental disabilities, and provider networks, including independent practice associations.

Bridget also regularly assists health care clients with HIPAA and health information privacy and security compliance, responding to and reporting data breaches and cybersecurity incidents, and negotiating privacy and security terms in health care IT contracts.

Bar Associations

  • New York State Bar Association, Health Law Section

Selected Memberships & Affiliations

  • Barclay Damon’s Women’s Forum
  • American Health Lawyers Association (AHLA)
Experience

Representative Experience

  • Regularly reviews and drafts breach notification and privacy and security policies, notices and letters to individuals affected by data breaches, and reports to HHS and AGs to notify regulators of breaches.
  • Regularly assists health care providers with performing and documenting HIPAA breach risk assessments to determine whether a security incident is a reportable breach.
  • Represented several health information exchanges in negotiating health care IT vendor contracts and other data-sharing agreements.
  • Represented care-coordination organizations (CCOs) to assist with HIPAA and corporate compliance, reviewing data-sharing agreements, and negotiating health care IT vendor contracts.
  • Assisted several behavioral health care collaboratives (BHCCs) with forming IPA and developing network agreements as well as other governance and regulatory matters.
  • Represented an institutional provider participating in clinical trials. Reviewed clinical trial agreements, including clinical research agreements and informed-consent forms.
  • Assisted in preparing a response to an information request from the Office for Civil Rights related to a breach of protected health information.
  • Represented health care providers in compliance-related investigations and submissions of self-disclosures to the OMIG.
  • Represented NY not-for-profit corporations in complying with the NY Non-Profit Revitalization Act and subsequent amendments.
  • Served as counsel to a NY Regional Health Information Organization (RHIO) in its merger with another RHIO that doubled the scope of the client's service base.
  • Successfully defeated a $1.6 million liability arising from an Office of the Medicaid Inspector General (OMIG) finding that an intellectual/developmental disability (I/DD) agency documentation was insufficient to support reimbursement it received for services provided.
  • Assisted a NYS care coordination organization (CCO) with health care compliance matters during its initial formation and once operational, including assisting with vendor contracting, reviewing data-use agreements and security attestations, corporate matters, HIPAA compliance and policies, and preparing a corporate compliance plan and related policies.
  • Represents an administrative data exchange in organizational planning, governance, regulatory compliance, contract negotiations, and building and implementing business-sustainability strategies.
  • Represented the client in relation to a data breach caused by a ransomware/malware attack. Coordinated with the forensic investigator and ransomware expert to respond and remediate the breach, and to attempt to negotiate the ransom payment. Coordinated providing notification to impacted individuals and state regulators in multiple jurisdictions. Addressed legal ramifications of the attack with the client's customers based on the contractual and legal requirements for data security.
  • Represented a client in relation to a data breach caused by an unsecured website regulating in disclosure of private information, including social security numbers and health care details. Coordinated a forensic investigation of the incident. Addressed the legal notification requirements for individuals impacted as well as state and federal agencies. Responded to state and federal regulatory investigations of the incident, including the negotiation of fines and remediation requirements.

Prior Experience

  • Barclay Damon LLP, Summer Associate
  • NYS Attorney General, Environmental Protection Bureau, Law Clerk

Selected Community Activities

  • American Association of University Women, Bath (NY) Branch, Member
  • SABAH, Inc., Junior Board Member
  • Buffalo Fenians Ladies Gaelic Football Club, Member

Selected Honors

  • Erie County Bar Association Volunteer Lawyers Project, Say Yes Legal Clinic Award, 2018
  • New York State Bar Association, Empire State Counsel Honoree, 2018

Featured Media

Alerts

Office of Cannabis Management Preview of NYS Adult-Use Cannabis Regulations

Alerts

Moving Defendant Relying on a Complete Defense Need Not Disprove Every Exception

Alerts

Red Flags That a Company May Be in Financial Trouble, Part 1

Alerts

NYS Appellate Court Sustains College's Tenure Terminations

Alerts

New Guidance for Adult-Use Retail Dispensaries in New York State

Alerts

ADA Accessibility Lawsuits: Tester Plaintiffs—Deborah Laufer, Robert Petropoulos, Saim Sarwar, and Others—Targeting Massachusetts Businesses in Continued Flurry of Federal Lawsuits

This site uses cookies to give you the best experience possible on our site and in some cases direct advertisements to you based upon your use of our site.

By clicking [I agree], you are agreeing to our use of cookies. For information on what cookies we use and how to manage our use of cookies, please visit our Privacy Statement.

I AgreeOpt-Out