Jane Blaney


Jane Blaney advises domestic and international health care, insurance, and technology clients on complex regulatory issues around privacy, data governance, international data strategy, artificial intelligence, big data, and cybersecurity.

Jane has a master’s in health analytics from Duke University’s Fuqua School of Business which enables her to understand the unique issues businesses face in today’s quickly advancing technological world. Her previous professional experience in clinical healthcare and insurance education allows her a unique perspective on how legal and business decisions impact the provision of services, products, and care.

Representative Experience

Jane works closely with organizations, communicating directly with all relevant groups including but not limited to executives/C-suite, legal, business, communications, marketing, analysts, security, and information technology.

She has advised on issues related to:

  • GLBA
  • GDPR
  • PIPEDA and other Canadian provincial privacy laws
  • NAIC Models 670 and 672 (and the various exposure drafts of 674)
  • State comprehensive privacy laws in CA, VA, CO, CT, UT, IA, IN, MT, TN, TX, FL, DE, and OR
  • Biometric privacy (e.g., BIPA)
  • State health data privacy laws in WA and NV
  • TCPA

Her experience includes but is not limited to:

  • Building and revamping privacy and security programs to comply with all relevant US and International laws including the creation or review of privacy and security policies & procedures, playbooks, data mapping, privacy impact assessments, website updates, training, and implementation.
  • Drafting, reviewing, and updating website privacy policies to comply with all applicable privacy laws.
  • Advising clients on all aspects of compliance with state, federal, and international data privacy and law.
  • Conducting risk assessments and advising clients on compliance with security laws and best practices.
  • Responding to cybersecurity incidents including all regulatory required notifications.
  • Conducting contract reviews of US and global contracts to assess privacy and data-focused provisions, cross-border data transfers, and licensing.
  • Advising on website and mobile app development to identify and manage any compliance risks.
  • Performing website and mobile app risk assessments on websites and applications to ensure compliance with applicable laws and to mitigate risk related to information collection, use, and disclosure.
  • Reviewing and drafting artificial intelligence and big data-related contracts.
  • Conducting risk assessments related to artificial intelligence and big data.

Jane is a member of the firm’s Technology Transactions, Cybersecurity, and Privacy Practice Group.


  • Board Member, Minnesota State Bar Association, Health Law Section
    • Programming Committee

Community Involvement

  • Board Member, Global Rights for Women

Presentations and Publications

  • Co-author, “HIPAA and Part 2 Harmonized: What Health Care Organizations Need to Know,” Health Care Law Today (February 12, 2024)
  • Panelist, “How AI, Digitization and Automation Are Impacting Franchising” 2023 Franchise Summit (July 2023)
  • Co-presenter, “Balancing Access to Care and HIPAA Compliance for Digital Health” (July 2023)
  • “Let’s Get Digital: Incorporating Digital Health and Wearables into Senior Care Communities” Health Law Connections (March 2023)
  • “Artificial Intelligence Briefing: Agencies Release Guidance on Employer Use of AI Systems” Journal of Robotics, AI & Law (November/December 2022)
  • “Top 6 Privacy Impacts on Mobile Health Apps from Overturning Roe v. Wade” Privacy & Cybersecurity Law Report (October 2022)
  • “NYDFS Releases Pre-Proposed Second Amendment to its Cybersecurity Regulations” 23 NYCRR 500 (September 2022)
  • “Using NFTs to Store Health Data: A New Era or a Privacy Disaster?” Business Law International (September 2022)
  • “UK Supreme Court Rules in Google’s Favor in Data Privacy Group Litigation with Major Implications for Data Breach Cases” Privacy & Cybersecurity Law Report (PCLR) (April 2022)
  • “Hidden in Plain Sight: How COVID-19 Revealed the Need to Incorporate Wearable Devices into Patient Care” American Health Law Association Journal of Health & Life Sciences Law (2020)
  • Panelist, “Updates in Artificial Intelligence Regulation” American Telemedicine Association: Asynchronous Telehealth Special Interest Group (May 2023)
  • Panelist, “Updates in Artificial Intelligence Regulation” Digital Health Special Interest Group (April 2023)
  • Panelist, “Health Insurance Data Privacy and Security” Europe Health Insurance Innovation Congress, London, UK (November 2022)
  • Panelist, “Developments in State and Federal Laws and Regulations Impacting PBMs” American Society for Pharmacy Law (November 2022)
  • Panelist, “Demystifying the Cloud, A Discussion of Cross Border Cloud Data Concern” Magnet Forensics (May 2022)
  • Panelist, “An Introduction to Cybersecurity Frameworks and Improving Your Company’s Cyber Hygiene” Magnet Summit (May 2022)