Vimala Devassy

Counsel

Atlanta
T +1.404.256.8243
F +1.404.459.5734

Overview

With nearly 20 years of experience representing healthcare industry professionals and entities, Vimy Devassy provides her clients with an in-depth understanding of industry compliance and regulatory issues. She has broad experience structuring complex transactions among healthcare providers, negotiating a broad spectrum of industry relevant contracts, and advising clients on day-to-day regulatory and compliance matters, including fraud and abuse laws and health information laws.

Certified as a Health Care Information Security and Privacy Practitioner (HCISPP), Vimy has extensive experience managing issues related to confidentiality and privacy of health information, and Health Insurance Portability and Accountability Act (HIPAA) compliance. Her work includes helping clients understand how to align their privacy and information security programs with HIPAA, respond to potential breach and security incidents, permissibly utilize and share their health data, and navigate health information laws as they consider innovative new technologies and business opportunities.

Select Experience

  • Advising vast array of health industry clients on complex data use issues, negotiating health information technology agreements, responding to significant HIPAA breaches, developing robust compliance HIPAA programs, and advising on day-to-day privacy and security compliance matters.
  • Providing ongoing assistance to large hospital system in negotiating and drafting wide variety of contracts, including physician-related agreements.
  • Advising multi-campus system regarding physician-hospital arrangements and provided transactional representation in connection with practice acquisitions, physician employment, medical director arrangements, and other professional services arrangements.
More »

Experience

  • Advising vast array of health industry clients on complex data use issues, negotiating health information technology agreements, responding to significant HIPAA breaches, developing robust compliance HIPAA programs, and advising on day-to-day privacy and security compliance matters.
  • Providing ongoing assistance to large hospital system in negotiating and drafting wide variety of contracts, including physician-related agreements.
  • Advising multi-campus system regarding physician-hospital arrangements and provided transactional representation in connection with practice acquisitions, physician employment, medical director arrangements, and other professional services arrangements.
  • Advising private equity clients regarding potential investments involving healthcare providers, including due diligence review and analysis of fraud and abuse issues, licensure, and other regulatory considerations.
  • Represented several large hospital systems and various large physician practices in responding to significant HIPAA breaches that resulted in no sanctions.

Recognitions and Memberships

Recognitions

  • Certified Health Care Information Security and Privacy Practitioner (HCISPP)
  • The Legal 500 United States (2016)
    • Recommended in Media, Technology and Telecoms: Cyber law
    • Recommended in Media, Technology and Telecoms: Data protection and privacy

Memberships

  • American Health Lawyers Association

Industries

Prior Positions

  • McKenna Long & Aldridge: Of Counsel

Admissions

  • New York
  • Georgia

Education

  • J.D., Boston University School of Law, 2001
  • M.B.A., Boston University School of Management, 2001
  • M.P.H., Emory University Rollins School of Public Health, 1998
  • B.S., Georgia Institute of Technology, 1997