About
Our Firm
Management Team

Recognition
Community

Pro Bono
Diversity and Inclusiveness

Offices
International - Interlaw
The firm has a strong understanding of business and an impressive national network.

Chambers & Partners
People

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

PrevNext

View By:
Industries & Practices
Experience
News
Recent News(view all)

Shipman Achieves Mansfield Certification Plus for 2020
"Best Lawyers in America" Recognizes 42 Lawyers
Seven Lawyers Receive "Lawyer of the Year" Honors
Washington, DC Lawyers Honored by 2020 Super Lawyers
LaManna Named One of Lawdragon's 500 Leading U.S. Bankruptcy and Restructuring Lawyers
Chambers Ranks Shipman For Fifth Consecutive Year Among Top Advisers to Private Wealth Market
Shipman Lawyers Representing Survivors and Families of those Killed in WWII B-17 Bomber Crash
Shipman Lawyers Participate in Greater Hartford Legal Aid's Pardon Clinic
Washington D.C. Insurance Practice and Lawyers Recognized in 2020 Chambers Guide
Three Shipman & Goodwin Partners Receive 2020 Professional Excellence Awards from Connecticut Law Tribune
Interlaw Again Ranked As Elite Global Law Firm Network in Chambers Global 2020
Shipman & Goodwin Promotes Ten to Partner, Elevates One to Counsel
Shipman & Goodwin Commits to Mansfield Rule 3.0 to Support Diversity and Inclusion
Events
Upcoming Events(view all)

Connecticut Legal Awards 2020 (September 30)
Upcoming CLE Events
Publications
Recent Publications(view all)

Governor Lamont Issues New Executive Order Allowing Testing Alternative to Self-Quarantine Following Travel
Untangling the Knot: The Effects of the CDC's Eviction Moratorium, Executive Order 7OOO, and a Recent Court Order on Landlords and Tenants in Connecticut
As Students Return to School, the U.S. DOL Clarifies the Use of Leave for Childcare-Related Purposes
Connecticut Updates Mask and Face Covering Rule Narrowing Medical Exemption
Connecticut's Department of Public Health Allows Virtual Learning for Practical Nursing Programs
Is it Health Care or Not? Considerations for Independent Schools Exploring "Non-therapeutic" Remote Programs
Safety, Health & Environmental Considerations for School Reopenings
HHS Bulletin Offers Guidance and Updates on COVID-19 Outcome Disparities
State Appeals Decision Regarding Maximum Age of Eligibility for Special Education
IRS Further Postpones Deadline for Tax-Exempt Hospitals to Satisfy CHNA Requirements
SCOTUS Upholds Employer Exemptions from Contraceptive Coverage
Careers
Overview
Law Students
Lateral Opportunities
Administrative Opportunities
We realize that our future depends on a steady flow of new talent -- and that's where you come in.

William J. Roberts, FIP, CIPP/US, CIPM

Partner

(860) 251-5051
wroberts@goodwin.com
Hartford Office

Profile Experience Publications News Events

Bill Roberts is chair of the firm’s Data Privacy and Protection Practice Group and a partner in the firm's Health Law Practice Group. Bill has extensive, practical experience counseling clients worldwide on all aspects of cybersecurity protection and incident response, from handling data breaches affecting millions of individuals, to helping publicly traded corporations, privately held businesses and not-for-profit organizations establish compliance programs under the EU General Data Protection Regulation (GDPR) and related US federal and state data privacy and consumer protection regimes.

Early in his career, Bill focused his practice on data privacy and information security issues in the health care sector, which remains one of the most highly regulated industries in the global economy. As information collection, usage, storage, management and disposal has grown to include virtually every enterprise, Bill has expanded his work to help businesses in a broad range of industries and of all types - from startups to Fortune 50 corporations - address emerging issues at the intersection of privacy, technology and the law.

Bill and his team have also advised manufacturers, retailers, media and technology companies, software and mobile app developers, educational institutions and more on the development and launch of new technology products and services. As a testament to his skill and knowledge, many of the nation’s most sophisticated insurance and pharmacy companies, hospital systems and other health care providers regularly turn to Bill for guidance.

Bill has represented clients in hundreds of national and international data breach matters of all sizes and involving a broad range of consumer and proprietary business information. In the face of a suspected or actual data breach, he helps clients understand and comply with applicable reporting requirements and provides representation during investigations before or in connection with the US Department of Health & Human Services (HHS), the Office for Civil Rights (OCR), the Federal Trade Commission (FTC), the Federal Bureau of Investigation (FBI), the Secret Service, the White House, US attorneys’ office, state attorneys general and state departments of insurance. Among recent high-profile, broad-impact matters, Bill counseled a UK company that suffered a global data breach and represented the target of one of the largest-known HIPAA “business associate” breaches (helping the client avoid any penalties).

In an era in which technology advances by the day, Bill also helps clients develop and implement data security systems and processes and negotiate vendor agreements that minimize the risk of data theft, piracy, hacking and ransomware attacks. He recognizes that no business or platform can be absolutely secured against a potential breach; as such, he works with organizations to develop proactive breach-response protocols that enable them to take immediate action and work closely with law-enforcement officials to minimize potential losses or damage. He also helps clients manage public relations issues that can arise in the context of highly publicized data security incidents

Bill’s experience spans the gamut of privacy laws and regulations, including:

HIPAA/HITECH
Gramm-Leach-Bliley Act (GLB)
Telephone Consumer Protection Act (TCPA)
EU General Data Protection Regulation (GDPR)
New York Department of Financial Services (DFS) Cybersecurity Regulation
Children’s Online Privacy Protection Act (COPPA)
Federal Trade Commission Act (FTCA)
California Consumer Privacy Act (CCPA)
Biometrics

A thought leader in the cybersecurity space, Bill speaks and writes on a near-monthly basis on topics involving data protection and privacy, both nationally and internationally. A certified privacy professional, he has served as a featured faculty member and presenter at numerous industry events, webinars and conferences, including the National HIPAA Summit and the Model Agreements & Guidelines International (MAGI) Clinical Research Conference, and is an appointed member of the State of Connecticut’s Health Data Collaborative in addition to his many other leadership positions. Bill is regularly called upon by the media to comment on health care and privacy legal matters.

Outside of his legal practice, Bill is a father and lifelong skier.

Distinctions

Chambers USA, America's Leading Lawyers: Healthcare (2020)
American Bar Association: Business Law Section Fellow (2014-2015)
Listed as a Connecticut Super Lawyer Rising Star®: Health Care (2011-2018)
New Leader in the Law, Connecticut Law Tribune (2013)
Certified Information Privacy Professional (CIPP/US)
Certified Information Privacy Manager (CIPM)
Appointed to State of Connecticut’s Connecticut Health Data Collaborative
Appointed Interlaw Global Chair of Data Privacy and Protection
Fellow of Information Privacy, International Association of Privacy Professionals
Appointed to State of Connecticut’s Task Force to Study the Interests Consumers Have in Protecting Their Privacy

Professional Affiliations

Health Care Compliance Association (HCCA)
Interlaw
Hartford InsurTech
BioCT
Connecticut Bar Association
International Association of Privacy Professionals (IAPP)
National Association of College and University Attorneys

Establishment of EU GDPR Compliance Program

Counseled technology and software companies on the establishment and implementation of General Data Protection Regulation (GDPR) compliance programs. The establishment of the programs involved the drafting of data processing addendums, consents, privacy notices, privacy policies and stakeholder communications. Bill worked with the technology firms to ensure that the programs not only satisfied compliance requirements, but also positioned the firms to use privacy compliance to maintain and expand customer relationships.

General Outside Privacy Counsel

Bill Roberts and the attorneys on the Privacy and Data Protection team serve as general outside privacy counsel to a wide range of companies, from some of the nation’s largest businesses to innovative technology companies coast to coast. In this role, Bill and his team serve as 24/7 outside advisors to these firms on a variety of matters, including data breach response, privacy program development, technology contracting and the launching of new initiatives, programs and products.

Experience


Counseled Major Health Insurer on Privacy and Data Security for New Mobile App
Formation of State Health Information Exchange
Outside Data Privacy Counsel
Data Privacy Breach Investigation and Response
Provide Counsel on GDPR Implications and Compliance
Health Care and Privacy Counsel
Representation in Data Breach
Representation in Department of Public Health Investigation
Establishment of EU GDPR Compliance Program
General Outside Privacy Counsel
Certificate of Need Matters
Handling Physician Disciplinary and Licensure Issues
Medicare and Medicaid Reimbursement and Compliance Issues
Acquisition and Financing of Musculoskeletal Tissue Business
Data Privacy Compliance and Contractual Guidance
General Outside Privacy Counsel for Major Health Insurer
Development of Mobile App
Development of Privacy and Protection Policies
Creation of Health Care Compliance Software
Data Privacy Breaches
Data Privacy Investigations
FERPA Compliance
HIPAA, HITECH and State Privacy Law Compliance
Development and Launch of All-Payer Claims Database
Establishment of Corporate Compliance Program for National Biotech Firm
Federal and State Investigations and Corrective Action
Contractual, Governance and Certification Matters
Establishment of On-Call Teleradiology Program
Corporate and Regulatory Compliance

Publications

August 17, 2020	Connecticut's Department of Public Health Allows Virtual Learning for Practical Nursing Programs
August 11, 2020	Is it Health Care or Not? Considerations for Independent Schools Exploring "Non-therapeutic" Remote Programs
August 7, 2020	Connecticut Expands Telehealth Services
July 22, 2020	HHS Bulletin Offers Guidance and Updates on COVID-19 Outcome Disparities
July 15, 2020	IRS Further Postpones Deadline for Tax-Exempt Hospitals to Satisfy CHNA Requirements
June 30, 2020	U.S. Supreme Court Strikes Down Louisiana Law that Imposed Restrictions on Abortion Providers
June 9, 2020	New Laboratory Data Reporting Guidance for COVID-19 Testing From HHS
June 9, 2020	Governor Lamont Orders Nursing Homes, Managed Residential Communities, and Assisted Living Services Agencies to Test Staff for COVID-19
June 9, 2020	Governor Lamont Suspends Involuntary Discharge of Nursing Home and Residential Care Home Residents to Homeless Shelters
June 8, 2020	CT DPH Issues Order Allowing for Flexibility of Certification Requirements for Unlicensed Assistive Personnel in Residential Care Homes
June 1, 2020	HHS OIG Issues Fraud Oversight Strategic Plan for COVID-19 Response and Recovery
May 29, 2020	Governor Lamont Issues Order Creating Temporary Nurse Aide Position
May 29, 2020	CT DPH Issues Order Modifying Administrative Procedures and Deadlines
May 27, 2020	CT Department of Health Issues Order Modifying Requirements for Behavioral Health Facilities and Nursing Homes
May 19, 2020	CT DPH Issues Orders Suspending Licensure Requirements for Certain Providers
May 18, 2020	OCR Bulletin Reminds Health Care Entities of Rights of Individuals With Limited English Proficiency During COVID-19 Pandemic
May 15, 2020	Connecticut DPH Acting Commissioner Gifford Reinstates Requirement that a Licensed Provider Order COVID-19 Test
May 13, 2020	Connecticut DPH Modifies Visitor Restrictions at Nursing Homes, Residential Care Homes, and Chronic Disease Hospitals
May 12, 2020	CMS Announces Additional Blanket Waivers during COVID-19 Public Health Emergency
May 11, 2020	Governor Lamont Suspends Regulations to Expand COVID-19 Testing
May 7, 2020	OIG Recommends Recovery of Medicare Overpayments Made in Violation of 72 Hour Rule
May 6, 2020	OCR Reminds Healthcare Providers about Media Access Restrictions
May 2, 2020	OCR Reminds Organizations of Available Cyber Threat Resources
April 24, 2020	COVID-19: Governor Issues Two New Executive Orders Impacting Health Care Providers
April 23, 2020	COVID-19: Additional Allocations of CARES Act Provider Relief Fund
April 22, 2020	COVID-19 Clinical Trial Data Qualifies for CMS Quality Payment Program
April 21, 2020	HHS Issues Advisory Opinion Regarding PREP Act Tort Liability Immunity During COVID-19 Pandemic
April 18, 2020	OCR Resolves Civil Rights Complaints Amid COVID-19 Pandemic
April 10, 2020	COVID-19: CMS Guidelines to Protect Patients and Health Care Workers in Outpatient Settings
April 10, 2020	Joint US/UK Guidance on Identifying and Preventing COVID-19 Related Cyber Attacks
April 9, 2020	COVID-19: CMS Guidelines to Protect Patients and Health Care Workers in Hospitals
April 9, 2020	COVID-19: Governor Lamont's Executive Order 7V for Health Care Providers
April 8, 2020	Data Privacy Concerns: Tips for Teleworking During Coronavirus
April 7, 2020	Protections from Civil Liability for Healthcare Providers and Financial Protections for Patients
April 4, 2020	FCC Announces Program for Health Care Providers to Receive Up to $1 Million to Cover Telehealth Costs
April 2, 2020	CARES Act: Summary of Provisions for Health Care Providers
April 1, 2020	New Waivers and Rules to Allow Hospitals to Respond to the COVID-19 Crisis
March 29, 2020	COVID-19: CMS Advances Payments to Providers and Suppliers
March 27, 2020	COVID-19 Update: N95 Masks and PPE: Guidelines for Use And Importation
March 26, 2020	COVID-19: CMS Provides Quality Reporting Program Relief
March 25, 2020	CMS FAQs and Guidance for COVID-19 Response
March 23, 2020	COVID-19: CMS Issues Telemedicine Toolkit
March 20, 2020	Governor Expands Access to Telehealth Services Executive Order No. (7G)
March 20, 2020	DEA's Expansion of Prescribing Controlled Substances Via Telemedicine
March 19, 2020 - Updated March 20, 2020	COVID-19: OCR HIPAA Enforcement Discretion for Telehealth
March 18, 2020	Medicaid Telehealth Expansion and Guidance
March 17, 2020	OCR Bulletin, Civil Rights and COVID-19
March 17, 2020	Expansion of Medicare Telehealth Benefits and Co-Pay Waivers During the COVID-19 Outbreak
March 17, 2020	COVID-19: New HHS Waivers
March 16, 2020	Determining Work Restrictions for Healthcare Personnel Exposed to COVID-19: CDC Recommendations
March 15, 2020	COVID-19: New CMS Waivers
March 15, 2020	Governor Lamont Issues Two Executive Orders In Response to Ongoing COVID-19 Developments in Connecticut
March 14, 2020	COVID-19: Privacy Considerations for Health Care Providers
March 13, 2020	Major Insurers Waive Coronavirus Testing Costs, Unpacked
January 27, 2020	Manufacturers Must Comply With CCPA, The Nation's Strictest Data Privacy Law, Effective January 1, 2020: Did You Miss It?
May 8, 2019	Measles Outbreak and Implications for Connecticut Schools
January 3, 2019	Physician Practice Liable for Violating its Duty of Confidentiality to a Patient
May 8, 2018	The GDPR is Coming: Keep Calm and Plan
January 24, 2018	HHS Takes Action to Protect Religious Beliefs and Moral Convictions
January 17, 2018	Connecticut Supreme Court Recognizes New Cause of Action for Patient Privacy Breach
January 10, 2018	OIG Scrutiny of Patient Assistance Programs
August 2017	Firm Attorneys Published in Legal Resource for School Health Services
February 15, 2017	SAMHSA Modernizes Regulations Governing the Confidentiality of Substance Use Disorder Records
October 11, 2016	Providing Transgender-Inclusive Health Care
October 3, 2016	Family Policy Compliance Office Issues FERPA Privacy Guidelines
October 27, 2016	October 17th Compliance Deadline for HHS Nondiscrimination Notifications Approaches
June 20, 2016	Governor Signs Student Data Privacy Law
May 24, 2016	Connecticut Legislature Passes Non-Compete Act Concerning Contracts With Physicians
April 2016	Communicating Protected Health Information Via Text Messaging
January 27, 2016	If You Provide Behavioral Health Services, Do the New HIPAA Reporting Rules Apply to You?
January 21, 2016	APCDs: One Solution to Obtaining Meaningful Performance Data
December 9, 2015	Stark Law Update

View All »

News

May 11, 2020	2020 Chambers Guide Recognizes Lawyers as Leaders in Their Field
October 17, 2019	CT Attorneys Recognized as 2019 Super Lawyers
June 17, 2019	William Roberts Earns Fellow of Information Privacy Designation
February 22, 2019	Shipman & Goodwin Weighed in With Aetna on Data Security for New App
October 18, 2018	CT Attorneys Recognized as 2018 Super Lawyers
August 7, 2018	William Roberts Recognized as a Hartford "40 Under Forty"
March 20, 2018	Bill Roberts Selected as InsurTech Hartford Mentor
January 13, 2018	Bill Roberts Quoted on Issues in Law Firm Data Breaches
October 17, 2017	CT Attorneys Recognized as 2017 Super Lawyers
August 1, 2017	Bill Roberts Appointed to CT Health Data Collaborative
July 28, 2017	Bill Roberts Explains Health Care IT Balancing Act in Huffington Post
April 4, 2017	Joan Feldman and Bill Roberts Highlight Key Health Care Compliance Issues at Nat'l Conference
March 6, 2017	Cyber Security Program and Panelist Bill Roberts Emphasize Preventive Measures
January 23, 2017	Bill Roberts Quoted on Importance of Cybersecurity Risk Management Plans
January 10, 2017	Bill Roberts Weighs in on Increased Attempts to Steal W-2s
January 1, 2017	Firm Names New Partners: Michele Backus and William Roberts
December 20, 2016	Bill Roberts Quoted by Association of American Medical Colleges
October 26, 2016	Bill Roberts Suggests Quick Response to Student Data Breaches
October 18, 2016	CT Attorneys Recognized as 2016 Super Lawyers
September 13, 2016	Bill Roberts Published in New Handbook by American Health Lawyers Association
August 19, 2016	Bill Roberts Offers New Guidance on Health Care Data Privacy
July 20, 2016	Health Law Daily Recaps HCCA Vendor Privacy Webinar Presented by Bill Roberts
July 11, 2016	Bill Roberts Quoted in Part B News on Recent HIPAA Breach
June 10, 2016	Bill Roberts Featured in Q&A on Data Privacy, Information Security and Preventing Breaches
October 19, 2015	CT Attorneys Recognized as 2015 Super Lawyers

View All »

Events

July 30, 2020	Webinar: EU-U.S. Privacy Shield Invalidated - Implications for U.S. Organizations
June 25, 2020	Webinar: 2020 HHS Patient Access Rule - What Hospitals Need to Know
May 19, 2020	Interlaw Webinar: Privacy in the Pandemic: Understanding the Data Protection Challenges around COVID-19
March 4, 2020	The New BAA? New "Part 2" Contract Requirements
October 29, 2019	Webinar: GDPR and Educational Institutions - Where We've Been, and Where We Are Now
October 24, 2019	Webinar: GDPR and Manufacturers - Where We've Been, and Where We Are Now
October 15, 2019	Lunch & Learn: Data Privacy and Protection
October 1, 2019	Webinar: Legal Check-Up: Student Health Issues
August 23, 2019	PrognoCIS Summit 2019
July 17, 2019	CLE Event: CLE Webinar: General Counsel Briefing: Your Controlled Information and the "Insider Threat"
May 8, 2019	Webinar: Privacy and Data Security: US/Brazilian Cross-Border Issues and Trends
March 5, 2019	28th National HIPAA Summit
October 25, 2018	Privacy and Data Security in a Globalized World: Cross-Border Issues and Trends
September 14, 2018	2018 Community Health Summit: Working Together for a Healthier Connecticut
August 7, 2018	CLE Event: Webinar: Compliance Checkup: NY DFS Cybersecurity Regulations
May 22, 2018	Model Agreements & Guidelines International (MAGI) Clinical Research Conference
April 18, 2018	What Independent Schools Need to Know About EUGDPR
April 13, 2018	Community Health Center Association of Connecticut
April 3, 2018	Independent School Webinar: Safeguarding Data - Developing a School Data Privacy and Security Program
March 15, 2018	Data Privacy for Public and Charter Schools: What Lies Ahead - Hartford
January 25, 2018	Digital Health - InsurTech With Benefits
November 30 - December 2, 2017	2017 TABS Annual Conference
July 18, 2017	Health Care Compliance Association Web Conference
June 23, 2017	Community Health Center Association of Connecticut (CHCACT)
June 20, 2017	CT Community Nonprofit Alliance Behavioral Health Compliance Forum
May 23, 2017	Cybersecurity Threats: Are You Next?
April 21 2017	Sustaining the Transition to Value in a Time of Policy and Market Turmoil
March 26-29, 2017	Health Care Compliance Association's 21st Annual Compliance Institute
March 10, 2017	CLE Event: Labor and Employment Spring Seminar: 2017 Public Sector Legal Update
March 1, 2017	The Next Generation of Cyber Security: It's Not Just About Firewalls and Antivirus Software Anymore
February 23, 2017	Recent Privacy and Security Developments in Human Subjects Research
February 22, 2017	CLE Event: Webinar: Safeguarding Your Business: Preventing and Responding to Data Breach and Cyber-liability
November 30 - December 2, 2016	OCR Audits Phase 2 With Real Life Experience - How to Navigate?
November 10, 2016	CT Community Nonprofit Alliance, Inc. Behavioral Health CFO Forum
October 23-26, 2016	MAGI's Clinical Research Conference - 2016 West
October 20, 2016	CT Technology Council 2016 IT Summit
September 20, 2016	CT Community Nonprofit Alliance, Inc. Compliance Roundtable
July 19, 2016	Vendor Privacy: Due Diligence and Contracting Solutions
June 27, 2016	Briefing on Public Act 16-189: An Act Concerning Student Data Privacy
June 15, 2016	Webinar: Managing HIPAA Data Breaches
May 2, 2016	HR's New Challenge: Cyber Security
April 9, 2016	American Bar Association Business Law Section Spring Meeting
March 23, 2016	Webinar: Telemedicine & eConsults - Where We Are Today and Where We're Going
February 23, 2016	CT HFMA: 2016 Legal Playbook: Best Practices to Keep Your Healthcare Operations on the Winning Side
December 11, 2015	Update on Data Privacy and Human Resources Law
December 2, 2015	Webinar: Business Associates: How to Differentiate Your Organization Using HIPAA Compliance
November 18, 2015	CT Technology Council 2015 IT Summit
November 9, 2015	Capitol Region Education Council - Technology Conference

View All »

DISCLAIMER

Your e-mail and any information in your e-mail to this individual are not protected by the attorney client privilege. Therefore your e-mail should not contain any confidential information and should be for general information purposes only. The e-mail to this individual is not intended to create, and does not constitute, an attorney-client relationship.

Decline

Practice Areas

Industries & Featured Services

Education

University of Wisconsin Law School, J.D., 2008, with honors
Colby College, B.A., 2002, with high honors

Bar Admissions

Connecticut

Attorney Advertising | Disclaimer | Privacy Policy | Contact Us

Our Firm	Management Team
Recognition	Community
Pro Bono	Diversity and Inclusiveness
Offices	International - Interlaw