Healthcare Archive
Under the GDPR (General Data Protection Regulation), a DPO (data protection officer) must be appointed by all public bodies and organisations whose core-activities include: Regular large-scale monitoring of data subjects; or Processing large amounts of special categories of data. ICO …
NHS Digital has suffered a data breach in which 150,000 patients had their confidential data shared without their permission. The breach affected national data opt-out (formerly type 2 opt-out) patients. National data opt-out is used when patients only consent to …
These days, organisations face a range of evolving cyber threats. The healthcare sector has a particularly hard time, as it needs to deal with more risks than most. Not only do OES (operators of essential services) such as NHS organisations …
Data security is an increasing priority for many organisations. The EU General Data Protection Regulation (GDPR), high-profile data breaches and new sector-specific frameworks such as the Data Security and Protection (DSP) Toolkit mean that many are looking for ways to …
The Data Security and Protection (DSP) Toolkit has superseded the Information Governance (IG) Toolkit as the standard for cyber and data security for healthcare organisations. The deadline for completing the DSP Toolkit is 31 March 2019, although larger organisations are …
The General Data Protection Regulation (GDPR) came into effect on 25 May 2018, extending the rights of individuals over how their data is processed and bringing consistency in the data protection laws across the EU by directly applying to organisations. …
In February 2018, NHS Digital released guidance for healthcare providers (HCPs) to help them comply with the EU General Data Protection Regulation (GDPR). With the GDPR enforcement date less than a week away, HCPs should have identified a compliance plan …
9 May 2018 marked the deadline for EU member states to transpose the Directive on security of network and information systems (NIS Directive) into national law; in the UK, the Directive was transposed as the Network and Information Security Regulations 2018 …
The healthcare sector faces more information security risks than almost any other sector. NHS organisations experience daily, automated cyber attacks, and must also contend with targeted attacks. With the introduction of the EU General Data Protection Regulation (GDPR) and the …
Industry researchers have identified a new criminal hacking group targeting healthcare organisations in the US, EU (including the UK) and the Middle East. Dubbed ‘Orangeworm’, the group operates by targeting hospitals with Trojan malware to access medical equipment and devices, …
