Careers

Diversity

With 17 offices, from New York to Los Angeles and Seattle to Orlando, we live and work in communities all over the U.S., collaborating across locations, disciplines and even borders. Our experienced, highly ranked lawyers serve businesses wherever they are and wherever they want to go.

Offices

About Us

Pages

Professionals

Thought leadership: blogs, podcasts, videos, publications, events and news

Insights

Services

Pro Bono

Am Law 100 firm with practices in Business, Digital Assets and Data Management, Intellectual Property, Labor & Employment, Litigation and Tax.

Home | BakerHostetler

FTC Issues Final Rule Banning Non-Competes

2024 BHIPP - BakerHostetler IP Perspective

Are Your Granted Patents in Danger of a Post-Grant Double Patenting Challenge?

IP Intelligence Report

World IP Day – Celebrating Innovation and Creativity to Build Our Common Future

Employment Law Spotlight

The Birth of Another Form of Paid Leave: Prenatal Leave for New York-Based Employees

Kimberly guides clients through the initial response, forensic investigation&nbsp;and fulfillment of regulatory obligations, as well as defense related to inquiries from state attorneys general and federal regulators.&nbsp;She has extensive experience advising long-term care clients on the intersection between HIPAA and state privacy law and maintains a special interest in working with healthcare organizations in Indian Country on matters related to the exercise of tribal sovereignty and healthcare compliance. Her work on patient consent is published in the Yale Journal of Health Policy, Law, and Ethics, and she is a frequent speaker on privacy related matters.

Prior to entering private practice, Kimberly served as law clerk to the Honorable George C. Hanks, Jr., and the Honorable Mary Milloy for the Southern District of Texas.

core/freeform

M.A., Health Policy & Clinical Ethics, The University of Texas Medical Branch, 2012

J.D., University of Houston Law Center, 2010, 

B.S., Texas A&M University, 2007, 

<ul>
<li>Law360: Native American Editorial Advisory Board (2024)</li>
</ul>

Houston

Seattle

Eight BakerHostetler Attorneys Named to 2024 Law360 Editorial Advisory Boards

Data Counsel

The Long-Awaited Part 2 Modifications Are Finalized with New Obligations for Part 2 Providers and Less Friction for Sharing Patient Information

HHS Publishes ‘Voluntary’ Healthcare Cybersecurity Performance Goals in Record Time but Leaves Questions Unanswered

Kimberly Gordy Comments on New Cybersecurity Compliance Goals for Health Care Facilities

Review of the Executive Order on Reforming Federal Funding and Support for Tribal Nations to Better Embrace Our Trust Responsibilities and Promote the Next Era of Tribal Self-Determination

HHS ‘Concept Paper’ Forecasts Stormy Cybersecurity Compliance Weather: New Cybersecurity Requirements and Increased Enforcement to Come in 2024

Partner Kimberly Gordy to speak at TribalNet Conference & Tradeshow

DSIR Deeper Dive: Tribal Privacy Codes: Establishing Self-Governance in the Post-Internet Age

Kimberly Gordy Speaks About Risk Reduction Through Data Governance

Privacy ‘Deep in the Heart of Texas’: An Overview of the Texas Data Privacy and Security Act

Kimberly Gordy Explains How to Develop and Manage a Privacy Program

Kimberly Gordy Guest Lectures on Healthcare Bioethics at Cornell

Kimberly Gordy Quoted in CDC Gaming Reports About Rise in Cybersecurity Attacks

Kimberly Gordy Discusses Cyber Insurance at TribalHub Cybersecurity Summit

Kimberly Gordy Addresses Healthcare Cyber Risk at Summit

OCR releases YouTube Video Addressing “Recognized Security Practices” in HIPAA Enforcement Context

Kimberly Gordy Informs TribalHub Podcast Listeners on Hybrid Workforce Issues

Kimberly Gordy Speaks at Two Sessions of TribalNet Conference and Trade Show

‘Unboxing’ the New NIST Guidance: NIST Publishes Significant Update to Healthcare Cybersecurity Guide

Dobbs on Demand

Dobbs on Demand: Healthcare Privacy on the Line in a New Legal Setting

Dobbs on Demand

HHS OCR Guidance to 60,000 Retail Pharmacies: Refusal to Fill Rx Based on Potential Pregnancy Termination Concerns Is a Civil Rights Violation, Will Be Investigated

The Room Where It Happens: The Autonomy of the Hospital Ethics Committees Post-Dobbs

Kimberly Gordy Discusses Data Protection and Governance at Tribal Cybersecurity Summit

Kimberly Gordy and James Morrison Take Part in Health Law Primer

Sounding the Alarm: New Federal Law Will Mandate the Reporting of Cybersecurity Incidents Involving Critical Infrastructure – What Companies Need to do now to be Prepared

Kimberly Gordy Takes Part in TribalHub Monthly Meeting

BakerHostetler Elevates 28 Attorneys to Firm Partnership

Kimberly Gordy Speaks on Ransomware Attacks

DSIR Deeper Dive: Regulatory Investigation Landscape

Kimberly Gordy Addresses Issues Related to Mental Health and Aging

Kimberly Gordy a Presenter at Direct Supply Conference

Kimberly Gordy Speaks at Memory Care Summit

Kimberly Gordy Speaks on Malpractice at University of Texas Medical Branch

Kimberly Gordy a Contributor to Health Systems Law Handbook

Kimberly Gordy Speaks to Alzheimer’s Association in Houston

Kimberly Gordy a Presenter on Topic of Research Misconduct

Kimberly Gordy a Speaker at ABA Health Law Section Conference

Digital Assets and Data Management

Healthcare Privacy and Compliance

Digital Risk Advisory and Cybersecurity

Employee Privacy

Post-Roe Resource Center

Telehealth

Industries

Healthcare

<ul>
<li>Handled data breaches ranging from a single record loss to five million plus records lost with multi-national notification requirements, and attacks ranging from business email compromises to pervasive network compromises by international hacking groups, leading to personal and company extortion attempts.</li>
<li>Advised long-term care providers on matters related to federal and state privacy law, Fair Housing Act compliance, ethical and policy issues related to resident autonomy and employment issues.</li>
<li>Counseled Native American governments and healthcare organizations on incident response, compliance and policy development.</li>
<li>Routinely prepares policies and procedures related to privacy, Incident Response Plans, Information Governance policies and communications as part of an overall risk mitigation strategy.</li>
<li>Worked with emerging companies and tech start-ups on HIPAA applicability, the role of a business associate and mobile technology related issues.</li>
<li>Advises healthcare clients on privacy considerations unique to oncology, mental health, pediatrics and clinical research.</li>
<li>Assists clients in post-breach investigations from the United States Department of Health and Human Services Office for Civil Rights, state attorneys general and other regulators arising from large and small data security incidents.</li>
</ul>

Kimberly C. Gordy

Kimberly C. Gordy

Experience

Recognitions and Memberships

Insights and News

Prior Positions

Credentials

Community and Pro Bono

Areas of Focus

Industries

Services

Featured Insights