Respond to Patient Negative Reviews Online Without Violating HIPAA


Patient negative reviews online can have a devastating effect on your practice. If you do nothing, they can wreck your practice’s reputation. But responding incorrectly can significantly increase your risk of violating a patient’s privacy.

Just this year, a practice in New Jersey was required to pay a $30,000 fine for unknowingly violating a patient’s HIPAA rights with their online response to a negative review of their services. And shortly before that, a dental practice had to pay $50,000 because of the response they posted.

The problem is that ignoring patient negative review posts isn’t an option, and incorrectly responding can lead to HIPAA violations and substantial financial penalties. So, what can you do to protect your online reputation while cutting your risk of HIPAA violations and penalties?

That’s where privacy attorney Joseph J. Lazzarotti, Esq., comes in. During his online training, Joseph will share step-by-step answers that help you reduce easy-to-make HIPAA errors when responding to a patient’s negative review posts online.

The practical steps you’ll receive from this 60-minute online training will help you protect your practice when responding to negative reviews from patients. Here are just a few of the practical strategies you’ll receive:

  • Uncover how to respond to negative comments on rating websites vs social media
  • Train your team on what they can and can’t say online to reduce HIPAA risk
  • Properly monitor your online posts and pin down what to do if you find an error
  • Institute staff social media policies to stop innocent HIPAA mistakes
  • Develop a checklist for your online posts to maintain patient privacy
  • Retain documentation essential to defend against patient HIPAA complaints
  • Avoid common pitfalls when linking, liking, following, and endorsing on social media
  • Correctly respond to investigator accusations of HIPAA violations to improve results
  • And much, much more…

It’s easier than you think to get nabbed for a HIPAA violation when responding to a negative review online. Simply revealing one small detail about a patient is enough to warrant a breach (as the practices above found out). And you can bet the feds are just waiting for you to make a mistake. But you can head off the problem before it occurs. Don’t wait, Sign up today!

Meet Your Expert

Joseph Lazzarotti
Esq., CIPP Principal at Jackson Lewis P.C.

Joseph Lazzarotti, Esq., CIPP is a Principal at Jackson Lewis P.C. in New Jersey. In his nearly two decades of experience advising HIPAA covered entities, he has represented hundreds of healthcare providers and vendors in HIPAA privacy and security compliance, right to access, data breaches and HIPAA investigations.

Joseph founded and currently co-leads the firm’s Privacy, Data, and Cybersecurity practice group, edits the firm’s Privacy Blog, and is a Certified Information Privacy Professional (CIPP) with the International Association of Privacy Professionals.


The webinar provided useful information, clear language, and visuals.
Devin Gilliam
Marketing Specialist, Coastal Dental