Janet V. Hallahan

RELEVANT EXPERIENCE

Prior to joining Practus, Janet spent part of her career as the Assistant General Counsel for Virtua Health, Inc., one of the largest and rapidly growing regional healthcare providers. There she provided a wide range of corporate, technology, privacy and intellectual property services to various divisions including: Penn Medicine/Virtua Health, Strategic Alliance, Digital Health and HealthIT, Marketing/CRM, and Service lines, including cardiology, orthopedics/sports medicine, neurology and neurosurgery.

She also served as Assistant General Counsel for LoanLogics, Inc. and provided in-house counsel to cloud-based financial services SaaS platform and software analytics products, on topics like subscription agreements, SOWs and SLAs, hosting, development and licensing , vendor management, policies and procedures, and outsourcing. Janet has worked as a corporate and securities associate at Morgan Lewis and Bockius, Dechert LLP, and Pepper Hamilton.

Her areas of expertise include:
Cybersecurity, Privacy, HIPPA, GLBA, data breach laws, Cloud-based technology, hosting agreements, software, Licensing, Outsourcing, E-Commerce; Digital Healt, Fintech, Website Terms of Use/Privacy Policies, Compliance, Publishing, Template agreements, Digital Marketing/Advertising, Technology Transactions, Emerging Growth, Branding, Trademark, and Copyright.

REPRESENTATIVE MATTERS

• Advised client on cybersecurity risks, such reputational risk, need for management and audit of third party vendors through SSAE/SOC2 reports, enforcement of policies and procedures and employee training, encryption requirements, access control
• Represented financial services vendor in the development of cloud-based services SaaS platform and software analytics products, including complex licensing; outsourcing (both domestic and international); risk, privacy and data protection; copyright, trademark, and other intellectual property matters.
• Represented client-side company in negotiation of SaaS-based IT support agreement with international vendor using “follow the sun” model while ensuring compliance with healthcare regulatory requirements and company policies
• Represented healthcare company in the negotiation of IoT system transmitting patient data through mobile devices to potentially non-HIPAA compliant third-party clouds
• Negotiated complex digital marketing CRM agreement with vendor providing full-service hosting, digital management services, and big data import functionalities, including assessing compliance with privacy laws
• Negotiated telehealth development and services agreement for video e-health platform
• Represented automotive company in development of e-commerce website, including web development and licensing agreements, hosting agreements, content development agreements
• Represented pharmaceutical company in development of technology systems for $2 billion international pharmaceutical manufacturing plant
• Represented vendor in $20 million global data processing outsourcing agreement for financial services product
• Advised healthcare system in assessment of whether various podcast platforms and related commercial subscription agreements provided HIPAA compliant functionality
• Negotiated development and license agreement to EU-hosted digital marketing template forms platform, including scope of license as well as clarifying ownership of content and ownership digital technology between client and vendor
• Negotiated agreement with robotics vendor to allow videotaping of surgery using robotic tool, including addressing whether embedded video functionality in robotic surgical tool complied with HIPAA and other regulatory requirements
• Negotiated physician contracts with healthcare system for access to EMR, including structure of data flow, compliance with regulatory laws as well as licensing and ownership
• Advised healthcare system on the third-party banking loans to patients with outstanding debt, including on the intersection between healthcare privacy laws (HIPAA) and financial services privacy laws (GLBA)
• Advised healthcare system on the use of third-party credit reports for confirmation of patient identification, including on the intersection between healthcare privacy laws (HIPAA) and financial services privacy laws (GLBA)
• Structured PHI data sharing between healthcare organization and pharmacy to provide population health services, including compliance with HIPAA and internal business needs
• Structured and negotiated digital health remote monitoring arrangements transmitting PHI, including compliance with HIPAA, FDA disclosures, intellectual property rights, and response times
• Drafted template agreements/playbook in various industry sectors, such as SaaS subscription agreements and SLA, marketing documents, content licenses
• Represent numerous client in drafting website terms of use and privacy policies, ranging from policies on static information only websites to those on interactive or e-commerce websites
• Represented international financial services client in domain name with fraudulent site, including filing with the FBI
• Represent numerous clients in the searching, use, clearance and registration of trademarks and service marks, including full corporate brand launch
• Advised client on whether app created by a physician outside the scope of employment was nonetheless subject to work-for-hire copyright laws