Gicel Tomimbang is an associate in the Data Privacy, Cybersecurity & Digital Assets Practice.
A significant portion of Gicel’s practice focuses on the intersection of healthcare with privacy. Clients frequently turn to her for advice and counsel on complex issues that arise under the Health Insurance Portability and Accountability Act (HIPAA), the Confidentiality of Medical Information Act (CMIA), the California Consumer Privacy Act (CCPA), the FTC Act and the FTC Health Breach Notification Rule.
Gicel previously served as a Deputy Attorney General for the California Department of Justice (DOJ), Office of the Attorney General, where she helped implement a proactive agenda to increase and protect affordability, accessibility and quality healthcare in California. During her tenure with the DOJ, Gicel conducted health data privacy and cybersecurity-focused government investigations pursuant to HIPAA, the CMIA, CCPA and California’s Unfair Competition Law (UCL) and False Advertising (FAL), and provided legislative advice. She also drafted amicus briefs and comment letters submitted on behalf of the California Attorney General. Gicel has experience with legal research and preparing legal documents and correspondence in connection with government investigations, appellate and trial courts and administrative forums. Prior to the DOJ, Gicel served as a government contractor for the U.S. Department of Health and Human Services, Office for Civil Rights (HHS/OCR), investigating healthcare privacy and cybersecurity matters under HIPAA.
Gicel is a Certified Information Privacy Professional (CIPP/US and CIPP/E), a Certified Information Privacy Manager (CIPM) and an IAPP Fellow of Information Privacy.