Stephen A. Riga

Of Counsel Indianapolis

Mr. Riga concentrates his practice in the area of employee benefits and privacy and security issues.

Mr. Riga's benefits practice includes work with funds and employers to design, maintain, merge and terminate qualified retirement plans and health and welfare plans. Mr. Riga prepares determination letters and voluntary compliance program submissions and assists employers and funds on COBRA, Medicare Part D, and HIPAA compliance. Mr. Riga evaluates contribution and withdrawal liability obligations, and identifies retirement and health and welfare plan compliance issues during due diligence, estimating potential associated costs.

Mr. Riga's privacy practice extends beyond his work with benefit plans, including consulting regarding data security and privacy law, with an emphasis on ADA, FMLA and other federal and state privacy requirements for employers. He assists clients with the development of policies and procedures for data security and privacy legal compliance, the establishment of information security standards and implementation plans, and the training of the client's workforce in privacy and security matters. Mr. Riga offers counsel regarding security incidents and breach notice requirements, data use and disclosure under the EU data privacy framework, and compliance with US-EU Safe Harbor Privacy Principles.

Mr. Riga received his J.D. from the Indiana University School of Law - Indianapolis in 2006. Originally from Los Angeles, California, Mr. Riga earned an undergraduate degree in English and History from Ball State University.

Professional Activities and Speeches

Professional Activities:

  • International Association of Privacy Professionals
  • Indianapolis Bar Association
  • American Bar Association (Taxation and Business Law Sections)
  • International Foundation of Employee Benefit Plans
  • CIPP/US (Certified Information Privacy Professional/United States)
  • CIPP/E (Certified Information Privacy Professional/Europe)
  • Co-chair of the IAPP Indianapolis KnowledgeNet Chapter


  • Ogletree Deakins Employee Benefits and Executive Compensation Symposium - ''Benefit Plan Data Security: New Threats, New Obligations'' - Austin - March 23, 2017
  • Indiana Benefit Conference - ''Data Privacy and Security for Employee Benefit Plans'' - Indianapolis - October 18, 2016
  • Ogletree Deakins Webinar - ''Privacy and Security for Benefit Plans: To HIPAA, and Beyond!'' - October 05, 2016
  • National Business Institute - ''Keeping HIPAA-Protected Records Safe – Tips for Cautious Attorneys'' - Indianapolis - September 15, 2016
  • Indiana Chamber of Commerce Employee Benefits Seminar - ''On-site Clinics: The Modern Health Plan'' - Indianapolis - September 13, 2016
  • Indiana Chamber of Commerce - ''Benefits and FMLA'' - Indianapolis - January 21, 2016
  • Ogletree Deakins Seminar - ''The Internet of Things: Data Privacy Consideration for Employers'' - Indianapolis - October 08, 2015
  • Indiana Chamber of Commerce Employee Benefits Seminar - ''There’s More to Life than the ACA: Other Important Self-Funded Health Plan Developments'' - Indianapolis - September 15, 2015
  • Indiana Chamber of Commerce - ''Employee Benefits Update (ERISA, COBRA, HIPAA)'' - French Lick - September 11, 2015
  • Indiana Chamber of Commerce - ''Employee Benefits Update (ERISA, COBRA, HIPAA)'' - South Bend - August 14, 2015
  • Strafford Webinar - ''Data Breach in ERISA Benefit Plans: Prevention and Response'' - April 23, 2015
  • Ogletree Deakins Webinar - ''Mind the Gap: Steps Employers Can Take to Address Benefit Plan Data Breaches'' - February 17, 2015
  • Lorman - Health Care Reform for Employers: Now What? - ''HIPAA Compliance: Strategies Strategies and Action Items for Health Plans'' - Indianapolis - December 03, 2014
  • Indiana Chamber of Commerce - Employee Benefits Seminar - ''Beyond HIPAA: Protecting Data Security for All Benefit Plans'' - Indianapolis - September 17, 2014
  • Indiana Chamber of Commerce & Ogletree Deakins Annual Employee Benefits Seminar - ''Speakers Panel: ERISA at 40: Top 10 Cases for Dinner Party Conversations'' - Indianapolis - September 17, 2014
  • Indiana Chamber of Commerce & Ogletree Deakins Annual Employee Benefits Seminar - ''New Privacy Deadlines: What Must Health Plans Do by September 23, 2013?'' - Indianapolis - September 12, 2013
  • Benefits: Cost Containment, Audits and Legal Risks Virtual Conference - Webinar - ''HIPAA, HITECH, and HHS, Oh My! What Changes in the Health Privacy Regulations Mean for Employers'' - August 09, 2013
  • Chamber of Commerce Benefit Seminar - ''Preparing for Health & Welfare Plan Audits'' - Indianapolis - September 13, 2012


Published Works


Our Insights