Legislative proposals to protect reproductive health data in Maryland could set a precedent in the United States, says Nichole Sweeney,general counsel and chief privacy officer at CRISP, the state-designated health information exchange of Maryland, and CRISP Shared Services, a nonprofit infrastructure organization supporting six HIEs across the U.S. In a Q&A with Healthcare IT News, Sweeney also explains why electronic health record vendors can better partner with healthcare organizations to maintain interoperability, stay in compliance with information blocking rules under the Cures Act and still restrict access to legally-protected data as well as what precautions health organizations can take to mitigate reproductive privacy risks in their development of artificial intelligence tools. As an expert on HIPAA, 42 CFR Part 2, state laws and data-use agreements, Sweeney works to ensure regulatory compliance for her organizations and also advises CRISP's partners and HIE stakeholders