Timothy M. McCrystal

Partner

mccrystal-timothy-m
  • JD, Suffolk University Law School, 1989
  • BA, Colby College, 1984

Qualifications

  • Massachusetts, 1989
  • Legal 500 (2014-2016)
  • Chambers USA: America's Leading Lawyers for Business (2014-2018)
  • The Best Lawyers in America (2007-2017)

Timothy M. McCrystal

Partner

Tim McCrystal is the co-chair of the health care practice group. Tim has over twenty years of experience advising health care providers, companies and investors on cutting-edge regulatory matters and transactions. He has extensive experience in structuring and negotiating health care affiliations, mergers and acquisitions, joint ventures, hospital-physician relationships, medical practice acquisitions, formation and reorganization of multi-institutional health care systems, and a variety of contractual arrangements and general business transactions. 

Clients from all sectors of the health care industry also turn to Tim for counseling on a wide range of compliance matters, including the development and fine-tuning of their compliance programs. Tim has counseled clients at every stage of their compliance program lifecycle: initial development and implementation, routine assessment and audit, and periodic evaluation and revision.

Tim is also a recognized expert in the field of privacy and cybersecurity. He regularly advises clients on the full array of data privacy, protection and security matters relating to the HIPAA privacy and security rules. Tim has represented clients in highly publicized settlements with the United States Department of Health and Human Services, Office for Civil Rights stemming from alleged data breaches relating to the loss or theft of protected health information.

Publications

Presentations

  • Presenter, “Emerging Trends in Health Care Joint Ventures,” AHLA Annual Meeting (June 2014)
  • Presenter, “Odd Bed Fellows: The Emerging of Non-Traditional Alliances in the Healthcare Market,” Health Care Law & Compliance Institute (March 2014)
  • Presenter, "The New Standard for Breach Under the Final Rule: Addressing and Identifying Incidents, Protections, Obligations and Liabilities," American Conference 3rd Annual HIPAA/HITECH Conference, American Conference Institute (May 2013)
  • Moderator, “Federal Update on HIPAA and HITECH Privacy and Security Enforcement,” Boston Bar Association (April 2013)
  • “Managing the Risk of Data Breaches and Preparing for Security Audits: Lessons Learned from the Field,” NACUA Annual Conference (June 2012)
  • “OCR HIPAA Audits and Responding to Breaches,” AHLA Annual Meeting (June 2012)
  • “HIPAA Audits – Guidance from the Past, Insights for the Future,” Coalfire Webinar (February 2012)
  • “Breach: Incidents, Protections, Obligations and Liabilities,” Health Care Information Privacy and Security Forum (December 2011)