Liz Heddleston is a member of the firm’s Health Law, Cybersecurity & Data Privacy, and Business and Corporate practice groups. 

Liz’s practice focuses on assisting clients in the healthcare space with a range of regulatory, operational, and corporate issues. Liz specializes in HIPAA compliance and data privacy, counseling clients on HIPAA and HITECH compliance, day-to-day privacy and security operational issues, and HIPAA breach response. She regularly advises clients on HIPAA breach identification and response and notification issues, including reporting obligations to the HHS Office for Civil Rights (OCR). She assists clients in drafting, reviewing, and negotiating Business Associate Agreements and other healthcare technology agreements, and helps clients develop and update privacy policies and procedures. Liz also advises clients on a range of other healthcare issues, including Stark Law and Anti-Kickback Statute matters, contracting and transactional matters, and state and federal regulatory compliance.

A Bethesda, Md. native, Liz joined the firm as an associate in 2015. She graduated from Davidson College with a B.A. in English and earned her law degree from William & Mary Law School (magna cum laude, Order of the Coif). During law school, Liz was a member of the William & Mary Law Review and served as a fellow for the Center for Legal & Court Technology. Prior to law school, Liz worked for five years as a newspaper journalist in Lynchburg, Virginia.


American Health Lawyers Association

Roanoke Bar Association

Virginia Bar Association

Davidson College, Roanoke Alumni Chapter
Chapter President

Featured Posts

Speaking Engagements

Virginia Medical Group Management Association | The Intersection of HIPAA, Patient Privacy, and the Nosy Employee | March 23, 2021

Lawyer case results depend upon a variety of factors unique to each case. Case results do not guarantee or predict a similar result in any future case undertaken by the lawyer.