Stacy Harper

Data Privacy and Cybersecurity Practice Group Leader / Health Care Law Practice Group Leader
P 913.327.5120 | F 913.345.0736


Stacy Harper counsels organizations in the health care space on regulatory compliance, health care reimbursement, and data privacy and cybersecurity issues. Stacy’s unique background as a certified professional coder and compliance officer provides her with first-hand knowledge of the legal and practical requirements faced by health care organizations.

Stacy regularly works with clients to navigate the complex intersection between federal laws such as Stark, Anti-Kickback, HIPAA, HITECH, Medicare regulations, No Suprises Act, Affordable Care Act, and the additional state requirements such as corporate practice of medicine, professional licensure, Medicaid regulations, and privacy laws. Whether the client is developing a new joint venture, creating a value-based payment arrangement, establishing data sharing for community health, or just maintaining ongoing operations, Stacy strives to work with the client to develop a structure that will support the client’s business objectives while reinforcing compliance with applicable legal requirements.

Stacy regularly writes and lectures on topics ranging from health care coding and reimbursement to data privacy and cybersecurity. Stacy currently serves on the Legal Advisory Board for AAPC and the Board of Directors for the Social Service League of Lawrence.



  • University of Kansas School of Law, 2009 (J.D.)
  • University of Kansas Medical Center, 2009 (M.H.S.A.)
  • University of Kansas, 2001 (B.G.S.)

Bar Admissions

  • Missouri, 2009
  • Kansas, 2010
  • Minnesota, 2015

  • Represented an academic medical practice in the negotiation and restructuring of its integration with an affiliated academic medical center.
  • Developed the structure and negotiated the combination of two large nonprofit entities to improve the availability of state-wide behavioral health care services.
  • Assisted a Medicare Advantage plan in the development of a shared-savings program to partner with providers for the improvement of health and control of costs in the community.
  • Represented numerous organizations in responding to audits and investigations by the Office for Civil Rights, state Attorneys General, and Departments of Insurance following a data breach affecting protected health information.
  • Created a vendor risk management program with a client to standardize the due diligence of and contracting with vendors to ensure requirements with CMS and other regulatory terms as well as data privacy and security protections.
  • Managed numerous compliance investigations by health care organizations, including analysis of applicable legal requirements, evaluation of internal practices, identification of any overpayments, and self-disclosure through refunds or the Stark or OIG self-referral program, as appropriate.

  • AAPC, Certified Professional Coder, 2003 (C.P.C.)
  • Missouri Lawyers Media, Women’s Justice Award, Innovation & Tech, 2023

  • American Academy of Professional Coders, Legal Advisory Board, 2014-present
  • American Academy of Professional Coders, National Advisory Board, 2013-2015
  • Certified Professional Coder, American Academy of Professional Coders
  • American Health Law Association
  • American Bar Association, Health Law Section
  • Greater Kansas City Society of Healthcare Attorneys
  • Kansas Association of Hospital Attorneys
  • Missouri Society of Health Care Attorneys, Board of Directors, 2012-2016
  • Missouri Bar Association, Health Law Section
  • Kansas Bar Association, Health Law Section

  • “Under the Magnifying Glass: Cybersecurity Best Practices,” Mid-America Chapter of Association of Corporate Counsel, September 2023
  • “Price Transparency and the No Surprises Act,” Collaborative Compliance Conference, AAPC and AHLA, August 2023
  • “Health Care Foundations – Corporate Practice of Medicine,” Spencer Fane CLE, August 2023
  • “Compliance Panel,” AAPC Kansas City Chapter Conference, August 2023
  • “Under the Magnifying Glass: Cybersecurity Best Practices,” Spencer Fane CLE, June 2023
  • “The Layers of Law,” AAPC, Kansas City Chapter, June 2023
  • “Transparency and No Surprises,” AAPC Healthcon, May 2023
  • “Legal Advisory Panel,” AAPC Healthcon, May 2023
  • “Data Sharing: Criminal Justice and Behavioral Health,” GAINS Center for Behavioral Health and Justice Transformation, April 2023
  • “Health Care Foundations – Medicare and Reimbursement Basics,” Spencer Fane CLE, March 2023
  • “No Surprise Billing,” AAPC Revcon, February 2023
  • “Health Care Foundations – Medicare Enrollment and Payer Participation,” February 2023
  • “HIPAA and Health Information,” County Counselors Association of Kansas, October 2022
  • “No Surprises Act Workshop,” AAPC Virtual Workshop, May 2022
  • “No Surprises Act,” HFMA/KAHPAM Meeting, April 2022
  • “Understanding Release of Information – Mental Health and Substance Abuse,” AAPC Healthcon, March 2022
  • “No Surprises Act,” Nevada MGMA, March 2022
  • “Legal Advisory Panel,” AAPC Healthcon, March 2022
  • “Don’t Be Surprised by the No Surprises Act,” Spencer Fane webinar, December 2021
  • “No Surprises Act: Good Faith Estimate for Self-Pay Patients,” AHLA Health Law Weekly, December 2021