Amber Mulcare, CIPP/US

Washington, D.C.
Phone: +1 202.688.3431
1001 Pennsylvania Avenue NW
Washington, DC 20004-2595

Amber Mulcare (CIPP-US) is an associate in Crowell & Moring’s Washington, D.C. office and a member of the firm’s Health Care and Privacy & Cybersecurity groups. She represents health insurance plans, health systems, major technology companies, government contractors, and other clients on a variety of digital health, privacy, and security matters.

Amber held several key operations positions at a startup medical technology company, during which the company grew its annual revenue from $8M to $114.3 million and launched a successful IPO. Amber was responsible for leading all end-to-end sleep and radiology utilization management solution implementations for the company, including contracting, project planning, and serving as the liaison between client and vendor technical, operations, and communications teams. Subsequently, Amber served as project manager for the clinical informatics division, where she handled execution for large projects,  including managing national EMR vendor integration contracting, interfacing with IT and analytics teams to assess risks to clinical rule builds, communicating client reporting configuration needs, and conducting quality assurance of data onboarding from a variety of data sets. During this time, she attended law school as a part-time evening student.

She also served as a legislative aide in the Maryland General Assembly, where she was responsible for managing all legislation-related activities, including research and analysis and stakeholder outreach.

Amber has leveraged her background to assist clients in technical risk assessments, compliance assessments, digital transformation strategy proposals that leverage emerging technologies, project planning and workflow improvements, data ownership analysis, regulatory analysis, including comment drafting and other government-facing deliverables and health care-related litigation.

Amber received her bachelor’s degree in government and politics from the University of Maryland in 2010. She received her J.D. from the George Washington University Law School, where she was a member of the Federal Circuit Bar Journal. She received her CIPP-US in February 2019.

Representative Matters


  • Counseled multiple major technology companies in assessing whether their products are likely to comply with California’s IoT Law “reasonable security measure” requirements.
  • Assisted government contractors and private companies in evaluating whether their system security plans complied with DFARS 252.204-7012 and drafting responses for submission.
  • Assisted a large manufacturer with the development of its digital transformation plan, including conducting analysis of competitor activities, identifying potential emerging technologies, recommending potential use cases, and determining best practices for implementation of such strategies.
  • Developed a comprehensive Incident Response Plan.
  • Evaluated a major security software company’s encryption standards to ensure alignment with industry best practices.

Health Care

  • Represented a health plan in multiple arbitrations against pharmacy benefit managers regarding breach of contract and fraud claims.
  • Advised an emerging company regarding its data ownership rights for a machine learning algorithm developed using open source neural network solutions.
  • Drafted comments for multiple clients in response to the ONC and CMS Interoperability (information blocking) Proposed Rules.
  • Presented to a health technology membership organization regarding provisions in the ONC information blocking Proposed Rule.
  • Drafted summaries, comments, and RFI responses for technology companies, patient organizations, and health plans for a variety of solicitations from HHS.
  • Advised a major technology company regarding its take-to-market strategies to utilize its existing technology products to support care coordination and caregiver support.
  • Analyzed state law regarding restrictions on non-physician clinical staff to assist with computerized physician order entry.
  • Analyzed whether physician gainsharing agreements were compliant with alternative payment models for Medicare.


Admitted to practice: District of Columbia


Client Alerts & Newsletters