Patient data is one of the greatest assets that healthcare organizations have. But it can also be their greatest challenge, especially with the rapidly expanding data privacy and sovereignty laws around the world.
Whether you operate in the United States, Canada, Europe, Asia, the Pacific Rim, Latin America, or any other jurisdiction, your ability to embrace new technology is being affected by legal obligations. You are now obligated to address data privacy compliance and localization as part of your planning process, particularly as they relate to personal health information.
These issues are even more important as we see new regulations for patient data and electronic health records, especially with the upcoming enforcement of the new EU General Data Protection Regulation (GDPR). This regulation will affect healthcare providers, pharmaceutical companies, and even biomedical research organizations everywhere in the world—even if they do not have operations in Europe. U.S.-based healthcare organizations can no longer look at just HIPAA/HITECH as the sole regulation that requires compliance.
Join us for part four in this webcast series as Sheila FitzPatrick discusses the rapidly expanding privacy laws that affect personal health information and the extraterritorial nature of some of these laws, including GDPR. Sheila will also talk about the importance of building a legal privacy compliance framework as the foundation to meet your obligations under data privacy laws, including GDPR, and the difference between privacy and security. She will explain how such a framework is also important to help your organization embrace new technology such as the cloud and the Internet of Things (IoT).
Specifically, Shelia will cover:
•The changing legal landscape
•The importance of privacy due diligence
•The challenges with new technology
•Data privacy versus data security