Imagine waking up one morning, opening your newspaper and being greeted by the news that your organization is implicated in a major privacy breach. This was my reality on December 10, 2002 when I was the Chief Privacy and Security Officer for the Ontario Smart Systems for Health Agency (predecessor to what is now Ehealth … Continue reading Surviving a Privacy Breach
Go to the website of any startup company in the health sector and you will see claims of HIPAA compliance. It’s the Holy Grail of privacy and security as it relates to health information. It is essential for marketing health information technology products and services in the United States. But are you really HIPAA compliant, and … Continue reading Are you HIPAA compliant?
Artificial intelligence (AI) is fast becoming a critical component in any innovative solution. I have noticed this in my work with start-up and scale-up companies. AI is no longer the stuff of science fiction. AI will soon be mainstream, and I predict that it will be a dominant feature of all health information systems within … Continue reading Artificial Intelligence, Health Care and Privacy
One of the subtle changes driven by the European Union’s General Data Protection Regulation (GDPR) is the gradual replacement of the term “privacy” with the term “data protection”. While this might not seem a big deal, language is everything. The terms we use often define the actions we take. In strict terms, privacy is about … Continue reading Privacy versus Data Protection: A Subtle Distinction
Without question, the most challenging privacy issue facing innovators and entrepreneurs is consent. How do we exploit the benefits of personal information while navigating the complex maze of global privacy laws that put control over the collection, use and disclosure of personal information into the hands of individual data subjects? How do we leverage the … Continue reading Consent: Its Going to Get Worse….Or Maybe Better?