Gregory A. Tapocsi


Greg focuses his practice on health care law, and he leverages his background dealing with cybersecurity, data privacy, and health care issues to counsel clients. Previously, he worked as a senior assistant attorney general and director of CyberOhio, a division of the Ohio Attorney General’s office. With CyberOhio, Greg helped draft and pass into law the Ohio Data Protection Act. The legislation was the first of its kind in the United States and gives businesses an affirmative defense to certain data breach lawsuits.  While at the Attorney General’s office, Greg’s duties also included managing and supervising the Cyber & Privacy Unit, analyzing cybersecurity threats, developing plans for minimizing risk, performing cybersecurity outreach throughout Ohio, and working with other attorneys general offices.  He is a frequent author and lecturer on cybersecurity issues for businesses.

He has also worked as an enforcement/compliance attorney with the State Medical Board of Ohio, ensuring statutory and administrative rule compliance by physicians, physician assistants, and massage therapists. Additionally, he oversaw investigations and prepared complex cases for formal action by the State Medical Board.  Greg also advised board members and agency personnel on issues related to the Medical Practices Act of Ohio, Chapter 119 Administrative Procedures, and federal rules and regulations implicating the area of health care.

Greg also has significant experience in criminal law based on his practice as an assistant county prosecutor in both Seneca and Delaware counties. As an assistant county prosecutor he managed adult felony trial dockets in both counties, which included handling cases at the investigation, trial, and appeal stages.


  • Ohio Northern University, Claude W. Pettit College of Law  (J.D., with distinction, 2008)
  • University of Tennessee  (B.A., summa cum laude, 2004)
    • Political Science

Bar Admissions

  • Ohio