What is GDPR and what does it mean for healthcare? Presented by Brian Selfridge, ITRM Partner at Meditology Services on May 10th, 2018
On May 25, 2018, the European Commission regulatory agency will mandate that businesses operating within the European Union countries must comply with the newly revised General Data Protection Regulation (GDPR).
US-based healthcare entities need to know about GDPR requirements and the implications for the health industry. In addition, there are impacts to Business Associates which work across industries and which may have EU-based operations.
Impacts to U.S. health organizations may include additional controls around Consent, Privacy Notices and Breach Notification. In addition, it may be necessary to appoint a Data Protection Officer. Further impacts include communication to clients on Rights to Access and permissions around Cross-Border Data Transfer.
Therefore, US-based firms (including healthcare, health plans and business associates servicing health care) must determine if their organization is required to meet the new requirements.
Listen to this webinar to gain a better understanding of GDPR requirements and the impact on data security frameworks, such as HITRUST and Privacy Shield.