Colin J. Zick

Colin J. Zick has no picture

Colin Zick’s practice is focused on health care and compliance issues, and often involves the intersection of those two subjects in administrative proceedings or litigation.  He frequently counsels clients on issues involving health and business information privacy and security (including HIPAA).   His work has had a particular emphasis on compliance issues related to pharmaceutical and medical device companies, hospitals, practitioners (including physicians, dentists, optometrists, psychologists, veterinarians), and provider organizations. This compliance work includes helping clients establish and maintain effective compliance programs. Colin defends clients in disputes alleging kickbacks, overpayments, and billing and coding problems, and represents before various state health care licensing and regulatory entities.

Colin’s practice also includes work on health care transactional matters. These projects include the establishment of joint ventures, the establishment of new entities, drafting and negotiation of employment contracts, and negotiating clinical trial agreements.

Colin’s practice also includes clients in industries beyond health care, ranging from the music industry to Internet start-ups. He has been involved in litigation relating to antitrust and unfair competition claims, and copyright infringement.

Practice Areas

  • Security and Privacy
  • Healthcare
  • Life Sciences

    Additional Practice Areas: Litigation, Business Crimes & Government Investigations, Product Liability & Complex Tort, Medicare Coverage & Reimbursement

Professional Associations

  • New England Council -- Health Care and Technology Committees
  • American Health Lawyers Association, Member (Participant, Fraud and Abuse Enforcement Panel)
  • Health Care Compliance Association, Member
  • American Bar Association, Member
    • Litigation Section
  • Health Law Section
  • Massachusetts Bar Association, Member
  • Boston Bar Association, Member

Education

  • University of Michigan, B.A., Political Science, with highest distinction, Phi Beta Kappa
  • University of Michigan Law School, J.D., cum laude

Bar Admissions

  • Massachusetts
  • New Hampshire
  • U.S. District Court for the District of New Hampshire
  • U.S. District Court for the District of Massachusetts
  • U.S. Court of Appeals, First Circuit
  • U.S. Court of Appeals, Ninth Circuit

For a comprehensive account of Colin's professional experience visit the Foley Hoag Web site.


Posts By This Author

What Facebook's IPO Means for Users

February 4, 2012

Massachusetts Data Security Law - Contract Grandfather Provision Expires March 1, 2012

January 31, 2012

Retailer's Request for Zip Code Violated Law, But Generated No Harm

January 28, 2012

More on Google's Privacy Policy

January 27, 2012

Google Changes Its Privacy Policies

January 24, 2012

Jail Time for Man Who Accessed Computer of a Competing Medical Practice

January 24, 2012

Supreme Court Holds Warrant Required for GPS Tracking

January 23, 2012

HHS Reports on Breaches of Unsecured Protected Health Information

January 22, 2012

Medicare Contractors Lag on Information Security

January 22, 2012

Unite Against the Cyber Enemy: Banks and Others Join Forces

January 22, 2012

Older Entries

Inside Counsel Magazine Revisits SEC's Cybersecurity Guidance

January 18, 2012

SEC Issues Guidance On Use of Social Media by Investment Advisers

January 13, 2012

Did You Know There Is a Congressional Cyber Security Caucus?

January 13, 2012

"Performing Due Diligence Before Signing a Cloud SLA"

January 5, 2012

Is Public-Private Information Sharing Needed to Respond to the Massive Increase in Cyber Attacks?

December 19, 2011

Is Public-Private Information Sharing Needed to Respond to the Massive Increase in Cyber Attacks?

December 19, 2011

"Once More Unto the Breach, Dear Friends, Once More": The Increasing Recognition of Complexity in Data Breach Response and Reporting

December 19, 2011

Waiters at High-End Steakhouses Arrested for Stealing Customer Credit-Card Numbers

December 1, 2011

Facebook Settles FTC Charges that It Deceived Consumers, Agrees to 20 Year Consent Order

November 29, 2011

Sen. McCain Inserts Cybersecurity Amendment into DoD Authorization Act

November 20, 2011

Cybersecurity Legislation to Come to Senate Floor in January 2012

November 17, 2011

"Foreign Spies Stealing US Economic Secrets in Cyberspace"

November 3, 2011

Data Security Industry Grows Without "Pearl Harbor" Moment

November 2, 2011

Consumer Response to Data Breach: Let's Sue!

November 2, 2011

"Securing profits: Venture capitalists betting online security will be big money-maker"

October 31, 2011

New England-Israel Data Storage & Security Summit-November 14, 2011

October 27, 2011

Credit Card Replacement Costs and Identity Theft Insurance Are Compensable Damages for Data Breach

October 25, 2011

"SEC's Corp Fin Staff Attacks Cyber-Security Disclosure"

October 25, 2011

Report Says Libya Nearly Subjected to U.S. Cyber-Attacks

October 17, 2011

SEC Publishes Guidance on Cyber Incidents

October 17, 2011

Microsoft Report Challenges Conventional Wisdom on Cybercrime Losses

October 16, 2011

Most Recent Sony Breach Illustrates the Cascading Effect of Data Breaches

October 14, 2011

Upcoming Seminar: "He Posted What? Dealing with Social Media in the Modern Workplace"

October 13, 2011

Upcoming Webinar: "Data Breaches & Compliance: Understanding The Law and How You Can Prepare"

October 13, 2011

Advanced Cyber Security Center Launched

September 21, 2011

More Consumer Data Security and Privacy Legislation Introduced

September 12, 2011

"What Every In-House Counsel Needs to Know About Data Security and Privacy"

September 7, 2011

Pulling Out Your Hair Over Wrongfully Disclosed Records?

September 2, 2011

Changing Tactics in the Cyber Underground

August 11, 2011

New Database Allows Review of Past History of Data Breaches

July 13, 2011

HIPAA Breaches Reported to OCR Near 300

July 11, 2011

Another Big HIPAA Settlement: The UCLA Health System Settles for $865,000

July 8, 2011

Hackers Hit the Headlines

June 28, 2011

Analysis of the Supreme Court's Decision Striking Down Vermont Pharmaceutical "Data Mining" Law

June 26, 2011

Supreme Court Strikes Down Vermont Data Mining Law

June 23, 2011

Is Teamwork the Answer to Data Security?

June 19, 2011

2011: The Year of the Breach

June 19, 2011

What Law Applies In "the Cloud"?

June 7, 2011

Does Briar Group's Massachusetts Settlement Create a New Legal Standard That Businesses Must Meet to Protect Personal Information?

May 22, 2011

What Can My Company Do To Fight Cybercrime Collaboratively?

May 22, 2011

Facebook Posting about Patient=HIPAA Violation=Physician Sanctions

May 12, 2011

Consumer Class Action Filed Against Sony for Data Breach

May 9, 2011

Sony Breach Update: The Scope Expands, While Consumers Wait for Answers About How and Why It Happened

May 8, 2011

EU Chimes in on Sony Data Breach

May 4, 2011

Is Physician Privacy a Thing of the Past

May 4, 2011

North Versus South: South Korea Accuses North Korea of Cyberattack

May 4, 2011

Sony Mega-Breach Spotlights Data "Security" Myths

May 2, 2011

Big HIPAA Breaches Now Number 265

May 2, 2011

"Pressure Point: Online Privacy -- Privacy is Potentially a Costly Workplace Issue"

April 29, 2011

Information Security In the Age of WikiLeaks

April 26, 2011

White House Releases Framework for National Strategy for Trusted Identities in Cyberspace

April 25, 2011

Data Security and Privacy for Medical Device, Pharmaceutical and Life Sciences Companies

March 29, 2011

TripAdvisor Reports Data Breach

March 25, 2011

Obama Administration Seeks "Consumer Privacy Bill of Rights"

March 23, 2011

Online Advertising Company Chitikia Enters FTC Consent Agreement for Deceptive "Opt-Out" Policy

March 18, 2011

Health Net Announces Second Major Breach in Two Years; Creates Potential for Largest Ever Penalty

March 16, 2011

What Is Inside Mass General's $1 Million HIPAA Settlement?

March 13, 2011

FTC Red Flags Suits Come to an End as Lawyers and Doctors Are Exempted

March 12, 2011

Supreme Court Rules Corporations Do Not Have Privacy Rights under FOIA

March 10, 2011

Compliance Approaches in the Changing HIT Privacy and Security Landscape: How You Can Nurture a Culture of Health Information Security and Privacy

March 2, 2011

FTC Publishes Copier Data Security Guide

February 25, 2011

You Call That a Password? Passwords Used to Protect Personal Health Information in Clinical Trials Are Cracked More Than 90% of the Time

February 23, 2011

HHS Fines Cignet Health $4.3 Million for HIPAA Violations

February 22, 2011

500 Is a Magic Number: Health Information Breaches Impacting 499 or Fewer Patients Likely Go Uninvestigated By OCR

February 21, 2011

DHS Updates Its "Handbook for Safeguarding Sensitive PII"

February 13, 2011

Online Privacy Bills Planned for 2011

February 10, 2011

Some Tips for Protecting Your Data when Dealing with Vendors

February 10, 2011

FTC Attorney Conceded Identify Theft Can Happen to Anyone

February 2, 2011

Mozilla and Google Announce "Do Not Track" Browser Features

January 28, 2011

Security and Privacy Issues of 2011: How to Stay a Step Ahead of the Coming Wave of Legislation and Self-Regulation

January 25, 2011

NIST Launches Web Site for National Strategy for Trusted Identities in Cyberspace

January 20, 2011

U.S. Supreme Court Upholds NASA Background Checks

January 19, 2011

Apparent HIPAA Violations in Hospital Treating Tucson Shooting Victims

January 16, 2011

Genetic Privacy Rights Group Publishes Guide to the World's DNA Databases

January 14, 2011

If You Got a New Smartphone Over The Holidays, Here Are Some Security Issues to Think About

January 5, 2011

Does the FTC's Report on "Protecting Consumer Privacy..." Apply to Non-Profits?

December 23, 2010

FTC Red Flags Rule Clarified; Red Flags Enforcement Likely to Begin in 2011

December 20, 2010

If You Haven't Changed Your Password Since Our Last Blog Entry About Passwords, It's Time You Did

December 15, 2010

Will 2011 Bring Us "Do Not Track" Legislation?

December 14, 2010

Tracking Protection to be Included in Internet Explorer 9: Is This the Tipping Point?

December 8, 2010

FTC Proposes Privacy Framework That Will Impact the Business Model of All Online and Mobile Advertising Companies

December 7, 2010

FTC Releases Report: "Protecting Consumer Privacy in an Era of Rapid Change: A Proposed Framework for Businesses and Policymakers"

December 1, 2010

Website Privacy Policies - an extensive primer.....

December 1, 2010

Advocacy Groups File FTC Complaint Over Online Consumer Health Sites and Health-Related Marketing

November 30, 2010

AMA Adopts Policy on "Professionalism in the Use of Social Media"

November 29, 2010

California Department of Public Health Issues Privacy Breach Fines to 8 Health Care Facilities

November 27, 2010

Restricting Employees' Internet Conduct May Violate Federal Labor Law

November 11, 2010

Connecticut Insurance Commissioner Fines Health Net of Connecticut $375,000 for Information Security Lapses

November 9, 2010

A Must Read: The Wall Street Journal's "What They Know" Series

October 30, 2010

Nearly 250,000 Opt Out of Google's Street View in Germany

October 29, 2010

Will a Smart Card Make Students Smarter or Is It a Dumb Idea?

October 28, 2010

NIST Releases Guidance On Protecting Our Digital Energy Infrastructure (Or, Is Big Brother in Our Power Lines?)

September 17, 2010

"Network Analysis" and Privacy: Does Anybody Care?

September 10, 2010

Gone Baby Gone: More Massachusetts Medical Records Go Missing

September 9, 2010

Public Discussion on Confidentiality and Privacy Issues Related to Psychological Testing

September 8, 2010

Patient Privacy Trumps Subpoena in Physician Disciplinary Action

September 2, 2010

Iranian Journalist Files Suit against Nokia Siemens Networks for Use of Network in Torture

August 29, 2010

Taking of a Blood Sample and Creation of a DNA Profile Found Not to Be an Unreasonable Search

August 27, 2010

Balancing Privacy and Security in an Age of Instant, Ubiquitous Communications

August 3, 2010

HHS Proposes Major Changes to HIPAA Privacy, Security and Enforcement Rules

July 14, 2010

Compliance Week's "Must-Read: Major HIPAA Changes Out For Comment"

July 9, 2010

HHS Issues a Notice of Proposed Rulemaking to Modify the HIPAA Privacy, Security, and Enforcement Rules

July 8, 2010

Connecticut Attorney General Reaches First State HIPAA Settlement with Health Net

July 7, 2010

TJX Settles Investor Lawsuit Related to Data Breach

July 7, 2010

CMS Issues Proposed Rules on Hospital Visitors

July 6, 2010

One More Reason to Secure Your Wireless Network

July 5, 2010

Is the Smart Money Chasing Privacy and Security?

July 5, 2010

Medical Groups Challenge June 1 Application of FTC Red Flags Rule

May 21, 2010

One More Thing to Worry About -- Hard Drives on Digital Copiers

May 20, 2010

Coming This Month -- Proposed HIPAA Regs!

May 2, 2010

One Million Impacted by Blue Cross Blue Shield of Tennessee Data Breach: How Do You Remediate on that Scale?

April 13, 2010

Is the Rejection of Security Advice by Users Really Rational? A Response to Cormac Herley

April 10, 2010

Update on HIPAA Business Associate Regulations -- OCR Says They Still Aren't Ready, Gives No Date

March 18, 2010

LifeLock To Pay $12 Million to Settle Charges That Identity Theft Prevention and Data Security Claims Were False

March 10, 2010

"Data, Data Everywhere" -- Recommended Reading

March 3, 2010

HHS Reports 35 Breaches Impacting 500 or More People

March 2, 2010

Deadlines, Deadlines, Deadlines: Three Important Privacy and Security Dates

March 1, 2010

Doctors and Other Health Care Professionals Challenge Application of FTC Red Flags Rule

January 29, 2010

Is Your Password Still "123456"? If So, It's Time for a Change

January 21, 2010

Connecticut AG Opens New Era in HIPAA Enforcement with Health Net Suit

January 13, 2010

Is the FTC "Moving to a Post-Disclosure Era" for Online Consumer Privacy?

January 12, 2010

Texas to Destroy 5.3 Million Illegally Obtained Blood Samples

December 26, 2009

Is Tougher HIPAA Enforcement Finally On Its Way?

December 9, 2009

HIPAA Breach Notification Made Simple -- Just Fill in the Blanks

December 7, 2009

Congressional Aide Shares Secret Ethics List With The World

November 1, 2009

Massachusetts Court Holds Disclosure of Patient Records Does Not Violate HIPAA or State Consumer Statute

October 22, 2009

FTC to Host Public Roundtables in December to Address Evolving Consumer Privacy Issues

September 17, 2009

ABA Sues FTC To Stop Application of Red Flag Rules to Lawyers

August 27, 2009

California Hospital Fined $187,500 For Octuplet Mom Breach

July 17, 2009

Good News and Bad News: An Employer Is Hiring; It's The HHS Office of Civil Rights!

July 17, 2009

Lawsuit Challenges Legality of HITECH Act

July 12, 2009

AMA Adopts Principles on EMR Breach

June 22, 2009

Bill Seeks Changes Massachusetts Data Security Law

June 19, 2009

Update on Hackers Ransom Demand for Virginia Prescription Database

June 8, 2009

Encryption Used By Hackers to Demand Ransom for Virginia Prescription Database

May 5, 2009

Swine flu and privacy in the workplace

April 29, 2009

First the Bad News, Your Doctor's Lost His License; Now the Really Bad News: No One's Taking Care of Your Records

April 2, 2009

Another Day, Another Celebrity's Hospital Record Breached

April 2, 2009

Data Breach: Not Only Can Happen to You, and Your Competitors (but Now It's Being Publicly Reported)

March 28, 2009

Lessons from the VA: what you can learn from someone else's problems

March 19, 2009

$150,000 Penalty for Disclosure of Physician Information

March 1, 2009

Text of American Recovery and Reinvestment Act, security and privacy provisions

February 25, 2009

Data Privacy and Security Meets Winnie-the-Pooh: Using Honey Pots to Protect Your Data

January 30, 2009