W. Reece Hirsch co-heads the firm’s privacy and cybersecurity practice and counsels clients on a wide range of US privacy issues, specializing in healthcare privacy and digital health. Reece counsels clients on development of privacy policies, procedures and compliance programs, security incident planning and response, and online, mobile app, and Internet of Things privacy. In Chambers USA rankings, Reece was recognized by his peers as “a consummate expert in privacy matters” and “probably the leading expert in HIPAA in the country.”
Reece has experience regarding the California Consumer Privacy Act and has written and spoken extensively on that subject. He edits and contributes to Bloomberg Law’s California Privacy Profile summarizing the state’s privacy and security laws.
Reece counsels clients in healthcare privacy and security matters, such as compliance with the Health Insurance Portability and Accountability Act (HIPAA), the Gramm-Leach-Bliley Act, state medical privacy laws, and Federal Trade Commission standards applicable to digital health companies. He has represented clients from all sectors of the healthcare industry on privacy and security compliance, including health plans, insurers, hospitals, physician organizations, and healthcare information technology, digital health, pharmaceutical, and biotech companies. Reece also advises clients on privacy issues raised by the coronavirus (COVID-19) pandemic, including those relating to workplace testing, HIPAA waivers and enforcement discretion, contact tracing, telehealth, and work-from-home and return-to-work policies.
Reece is also an experienced healthcare regulatory and transactional attorney, advising healthcare providers and health plans on fraud and abuse, self-referral and licensing matters. He has served as lead transaction counsel on the sale and acquisition of hospitals, medical groups, clinics, and other healthcare organizations. Reece guides clients through corporate matters relating to the formation and ongoing representation of independent practice associations, medical groups, management services organizations, integrated delivery systems, and healthcare technology companies.
The International Association of Privacy Professionals has designated him a Certified Information Privacy Professional.
Reece also served on an advisory group to the California Department of Justice that developed a 2013 policy guide on the detection, prevention, and response to medical identity theft for providers implementing electronic health records systems. He previously served on a similar advisory group to the California Office of Privacy Protection that developed security breach response recommended practices.
Reece is a member of the editorial advisory boards of Healthcare Informatics and Briefings on HIPAA.
Reece was named by The Daily Journal as a Top California Cyber Attorney for 2022. In 2009, Nightingale’s selected Reece as an Outstanding Healthcare Information Technology Lawyer.
On a volunteer basis, Reece serves on the board of directors of the Valentino Achak Deng Foundation, which has founded and operated the Marial Bai Secondary School and the Alok Girls’ Academy in South Sudan.
Northwestern University, 1982, B.S.
University of Southern California Law School, 1990, J.D.
Awards and Affiliations
Ranked, Privacy & Data Security: Healthcare, USA, Chambers Global (2021–2023)
Ranked, Privacy & Data Security: Healthcare, Nationwide, Chambers USA (2020–2023)
Ranked, Healthcare, California, Chambers USA (2005–2023)
Recommended, Media, technology and telecoms: Cyber law (including data privacy and data protection), The Legal 500 US (2018–2023)
Recognized, Top Cyber Lawyer, Daily Journal (2022)
Named, Modern Healthcare’s “Largest Healthcare Firm” (2016–2021)
Selected as an "Outstanding Healthcare Information Technology Lawyer" by Nightingale's (2009)
Member, American Health Lawyers Association
Member, California Society for Healthcare Attorneys
Member, International Association of Privacy Professionals