Desktop Image: Williams, Rebecca L.
Mobile Image: Williams, Rebecca L.
Rebecca L. Williams
Partner
Chair, Health Information Practice
First I work out the rules — then I figure out how to play the game.
Rebecca L. Williams, RN, JD, is a nationally recognized authority on HIPAA, health information privacy, and data breach response. As a registered nurse with hands-on experience in hospital and other healthcare environments, she brings a practical perspective to her practice.
From initial development of HIPAA compliance programs to one-off questions to government investigations, Becky works with HIPAA covered entities and business associates to safeguard health information while keeping their businesses running efficiently. She also works side-by-side with clients in developing new technologies, including artificial intelligence and machine learning, consistent with HIPAA compliance. Becky assists her clients in preparing for and responding to data breaches, with a goal of recovering as quickly as possible while complying with breach notification and other regulatory requirements.
Becky represents: healthcare providers; financial institutions and payment processors; cloud service providers; business associates; AI and technology developers; and health plans and plan sponsors.
Becky is a frequent national speaker, is an author of numerous publications, including a contributing author of the HIPAA Portability, Privacy & Security Manual, published by the Employee Benefits Institute of America (a Thomson Reuters imprint), and regularly is quoted in the media.
Practice Highlights
Recognized expertise
Named one of the "Best Lawyers in America" in Health Care Law by Woodward/White and a "Best Lawyer" in Seattle. Co-chairs DWT's Health Information Practice. Regularly addresses cutting-edge issues related to health information privacy.
HIPAA
Practical advice stems from working with HIPAA since HIPAA was born, plus a deep knowledge of the healthcare industry. Negotiated so many business associate agreements for both covered entities and business associates that she can negotiate with herself in her sleep. By understanding both sides, the negotiation process shortens, saving time, money, and aggravation for clients.
Incident response
Walks clients through data breaches involving health information including assisting with determination of a reportable breach, provision of notification, documentation, and response to government investigation. Practical experience alleviates at least some of the pain.
- Develops effective HIPAA compliance strategies and counsels healthcare provider and health plan clients, as well as healthcare vendors and third party administrators, on addressing ongoing HIPAA issues
- Structures arrangements - and develops implementing documents such as contracts, terms of use, bylaws, policies, and procedures - for electronically sharing health information
- Assists clients in responding to data breaches, including providing notification of breaches and addressing mitigation efforts
- Represents hospitals and health systems in EHR provisioning, including providing physicians with subsidized technology - often called EHR donations – to promote electronic data sharing in compliance with Anti-Kickback Statute, Stark Law, and tax-exemption requirements
- Identifies whether an entity is a covered entity or business associate and develops structures for complying with HIPAA
- Provides guidance with respect to risk analyses and risk management
- Develops privacy, security, and breach notification policies and procedures and related documents, including notices of privacy practices and authorizations
- Drafts and negotiates business associate contracts from both a covered entity and business associate perspective
- Advises a variety of clients in addressing compliance issues, conducting internal investigations, and developing corrective action plans
- Creates innovative methods for alternative uses of health information
- Advises hospitals, health systems, and others in the healthcare industry in resolving Stark Law and Anti-Kickback Statute issues including those arising out of organizational structures, physician relationships, and vendor agreements
Admitted to Practice
- Washington, 1998
- Illinois, 1986
Education
- J.D., Loyola University Chicago School of Law, 1986
- Dean's List each semester
- Editor, Women's Law Reporter
- B.S.N., Nursing, Duke University, 1981, magna cum laude
Memberships & Affiliations
- Co-Chair, Sub-workgroup on Enforcement – Workgroup for Electronic Data Interchange (WEDI), Strategic National Implementation Project
- Chair, Sub-workgroup on Preemption, WEDI
- Vice Chair, Health Information and Technology Practice Group, American Health Lawyers Association, 2004-2010
- Legal Aspects of Health Information Exchange Task Force, Health Information and Management Systems Society
- Secretary, Trustee; Executive Committee Member – Villa Academy, 2009-2015
- Trustee, 2001-2009; Executive Committee Member, 2006 – American Lung Association of the Northwest
- Washington State Society of Healthcare Attorneys
- American Bar Association
Professional Recognition
- Named as one of "America's Leading Lawyers for Business" by Chambers USA in Privacy & Data Security: Healthcare (Nationwide), 2022-2025
- Named as one of "America's Leading Lawyers for Business" in Privacy & Data Security: Healthcare (USA) by Chambers Global, 2023
- Named as one of the "Best Lawyers in America" in Health Care Law by Best Lawyers, 2005-present; "Best Lawyers in the Pacific Northwest," 2015-2016; "Best Lawyers in Washington," 2015; "Best Attorneys in Washington," 2013-2015; "Top Lawyers in the Puget Sound Region," 2012
- Received "Distinguished" rating for High Professional Achievement, Martindale-Hubbell, 2020, 2021
- Selected to "Women in the Law" by Best Lawyers, 2017-2019
- Named a "Best Lawyer in Seattle" by Seattle Metropolitan magazine
- Listed in "Who's Who in America," "Who's Who Among Women" and "Who's Who in Law"
Background
- Worked as an attorney for several major national law firms focusing on health law
- Worked as a registered nurse at Children's Memorial Hospital, Chicago; at St. Jude's Hospital, Vieux Fort, St. Lucia; and in home health and physician practice settings
Searching...
Publications
06.06.25
News
Chambers USA Affirms Davis Wright Tremaine's Growing National Leadership in Key Industry Sectors Read More medical equipment
01.08.25
Insights
HIPAA Security Rule Resolves To Hit the Gym and Bulk Up Read More stethoscope clipboard digital health stats
12.18.24
Insights
Whether Naughty or Nice, Compliance Deadline for HIPAA Reproductive Care Privacy Is Coming to Town Read More 09.12.24
Presentations
Speaker, "Recent Developments in Health Information Privacy Law," PNW Healthcare Regulatory & Compliance Seminar, Davis Wright Tremaine, Seattle
Doctor holding mobile phone
06.25.24
Insights
Healthcare
Federal District Court Casts Doubt on HHS HIPAA Tracking Technology Guidance Read More Publications
06.10.24
News
New Chambers Rankings Affirm Davis Wright Tremaine's National Leadership in Key Industry Sectors Read More Webinar
06.06.24
Webinars
Healthcare
"HIPAA Amendments to Support Reproductive Health Care Privacy," Washington State Hospital Association Webinar Read More Webinar
05.09.24
Webinars
Healthcare
"HIPAA Amendments to Support Reproductive Health Care Privacy and the Impact on Covered Entities and Business Associates," Davis Wright Tremaine Webinar Read More 04.26.24
Insights
Healthcare
HHS Amends HIPAA To Further Protect Privacy of Reproductive Health Care Information Read More Doctor and robot analyzing data
04.05.24
Insights
Healthcare
Washington's My Health My Data Act and its Nevada Twin are Now in Effect – Are You Ready? Read More
Your search returned no results. Please try another search or remove search criteria.