Establishing and maintaining effective systems to protect sensitive personal data and confidential business information from outside interference while also assuring that privacy interests are protected is among an organization’s highest priorities. Our security and privacy team at Epstein Becker & Green has written extensively about the guidance and best practices issued by federal and state regulatory and enforcement agencies. Execution, monitoring and continually updating these preventive practices define an organization’s first line of defense. But what happens in the event that an organization actually suffers a breach? Is there guidance that might be available, particularly to healthcare organizations, to deal with continuity and disaster planning (BC/DR) directed towards assuring resilience and recovery in the event of a potentially-disastrous cyberattack?
According to a report by West Monroe Partners, approximately 40% of companies engaged in corporate transactions reported finding a cybersecurity issue during post-acquisition integration of the target company. While companies routinely conduct robust transactional due diligence to manage legal risk, many fail to adequately conduct cybersecurity due diligence. As a consequence, many companies and investors are leaving themselves vulnerable to potentially severe latent cyber risks.
Cybersecurity is especially relevant in healthcare transactions as the industry ...
Blog Editors
Recent Updates
- CMS Issues CY 2026 MA & Part D Rate Announcement, Final Rule on CY 2026 Policy and Technical Changes to Programs, While Seeking Input on Burdensome Medicare Regulations for Rescission
- Pushback of Deadline for SNFs to Submit Significantly More Detailed Ownership and Control Information in New “SNF Attachment” to CMS Form 855A
- Podcast: Breaking Down the Shifting Vaccine Policy Landscape – Diagnosing Health Care
- Non-Competes in Health Care: 2025 Update
- Seventh Circuit Ruling Paves the Way for More Flexible Healthcare Marketing Services