Lynn Sessions

Partner

Houston
T 713.646.1352  |  F 713.751.1717

"'Attentive and responsive' Lynn Sessions elicits praise for her practice advice and excellent customer service...[she] maintains a fine track record for her regulatory work."

— Chambers USA 2014

With more than 20 years of working with healthcare industry clients, Lynn Sessions focuses her practice on healthcare operations and regulatory work, with an emphasis on healthcare privacy and data security, breach response, and HIPAA compliance. Having previously served as in-house counsel and director of several departments at a nationally ranked children's hospital, Lynn collaborates closely with healthcare clients and approaches her legal representation from a client's perspective. 

Lynn is a frequent speaker on a range of topics affecting health industry clients, including HIPAA compliance, data breach response, cyber and network security, enterprise risk management, EMTALA, handling adverse patient events and insurance and risk financing. Lynn is also a regular contributor to BakerHostetler's Data Privacy Monitor blog, available at www.dataprivacymonitor.com, as well as the Health Law Update.

Select Experience

  • Has handled more than 150 healthcare data breaches, including several of the largest breaches reported to date. In her representation, Lynn provides counsel to healthcare providers and other covered entities on breach analysis, breach response, crisis management with patients, media and employees, and regulatory notification obligations to the Office for Civil Rights (OCR) and state attorneys general.
  • Has responded to more than 30 post-breach investigations from the OCR and state attorneys general arising from large and small data breaches reported by covered entities and has successfully defended healthcare organizations in these investigations.
  • Regularly advises hospitals on Emergency Medical Treatment and Active Labor Act (EMTALA).
More »

Experience

Privacy and Data Security 
  • Has handled more than 150 healthcare data breaches, including several of the largest breaches reported to date. In her representation, Lynn provides counsel to health care providers and other covered entities on breach analysis, breach response, crisis management with patients, media and employees, and regulatory notification obligations to the Office for Civil Rights (OCR) and state attorneys general.
  • Has responded to more than 30 post-breach investigations from the OCR and state attorneys general arising from large and small data breaches reported by covered entities and has successfully defended healthcare organizations in these investigations.
  • Advises clients on HIPAA compliance, including preparation of policies and procedures, notice of privacy practices, business associate agreements, and incident response plans. Works with healthcare organizations post-data breach to strengthen safeguards under HIPAA and implementation of corrective action plans.
  • Advises with large non-healthcare employers on HIPAA issues for their self-insured health plans and onsite provider clinics on HIPAA compliance, including policies and procedures, business associate arrangements, and sharing of employee information.  
Operations and Regulatory Practice 
  • Regularly advises hospitals on Emergency Medical Treatment and Active Labor Act (EMTALA).
  • Conducted an audit of a top children’s hospital's risk management department and advised on departmental and operational changes for improved function within the hospital.
  • Develops and enhances credentialing and peer review processes for hospitals and physician groups.
  • Advises hospitals and large physician practices on informed consent, release of information patient information, affiliation agreements, and privileging of peer review and quality review activities. 

Recognitions

  • Sessions, LynnChambers USA: Healthcare in Texas (2014)
  • Burton Award: Distinguished Writing Award for "Anatomy of Healthcare Data Breach" (2013)
  • American Leadership Forum: Senior Fellow
  • Texas Bar Foundation: Fellow
  • Texas Super Lawyers "Rising Star" (2005)
  • Rice University, Jesse H. Jones School of Management Executive Education: Executive Education in Medical and Healthcare Management Certification
  • Texas Children's Hospital: Advanced Quality Improvement and Patient Safety Certification
  • Development Dimensions International: Strategic Leadership

Memberships

  • American Health Lawyers Association
  • AHLA Enterprise Risk Management Task Force: Vice Chair
  • American Society for Healthcare Risk Management
  • Risk and Insurance Management Society
  • American Bar Association
  • Houston Bar Association

Alerts

Articles

Community

  • Children at Risk: Board of Directors, Chair of Development
  • Immunization Partnership: Board of Directors

Services

Industries

Prior Positions

  • Texas Children's Hospital: Director and In-House Counsel (2004 to 2011)

Admissions

  • U.S. District Court, Southern District of Texas
  • U.S. District Court, Northern District of Texas
  • U.S. District Court, Eastern District of Texas
  • Texas, 1993

Education

  • J.D., Baylor University Law School, 1993, Order of Barristers
  • B.A., Texas A&M University, 1989

Blog

In The Blogs

Previous Next
Data Privacy Monitor
New Guidance for Merchants on Ensuring that Service Providers Share Security Responsibility
August 18, 2014
For merchants, long gone are the days of using a card reader with a dial-up connection to their payment processor. Today’s omni-channel retailers rely on multiple third party service providers to complete payment card transactions. These...
Read More ->
Data Privacy Monitor
What Companies Can Do to Protect Themselves in the Face of Yet Another Massive Data Breach
By Jenna N. Felz
August 12, 2014
Last week it was reported that a small group of Russian computer hackers illegally obtained an unprecedented quantity of internet credentials, including 1.2 billion username and password combinations, and over 500 million unique email...
Read More ->
Data Privacy Monitor
Major Transformation in Cyber-Liability Insurance is Underway
July 31, 2014
Editor’s Note: the following blog post was authored by Ben Beeson from Lockton Companies LLC In the beginning The emergence of the Internet as a business platform at the end of the nineties also announced the arrival of new risks to...
Read More ->
Data Privacy Monitor
Nominations Open for ABA Journal’s Top 100 Legal Blogs – Data Privacy Monitor
July 30, 2014
The American Bar Association Journal announced that it is compiling its annual list of the 100 best legal blogs and invites readers to submit a nomination: Use the form below to tell us about a blog—not your own—that you read regularly and...
Read More ->
Data Privacy Monitor
Partner Alan Friel Named Influential Lawyer by LA Business Journal
July 24, 2014
Partner Alan Friel was named among the “Most Influential Lawyers: Digital Media and E-Commerce Law” in the Los Angeles Business Journal’s July 21, 2014, issue. The list recognizes 30 Los Angeles attorneys who have demonstrated outstanding...
Read More ->