Establishing and maintaining effective systems to protect sensitive personal data and confidential business information from outside interference while also assuring that privacy interests are protected is among an organization’s highest priorities. Our security and privacy team at Epstein Becker & Green has written extensively about the guidance and best practices issued by federal and state regulatory and enforcement agencies. Execution, monitoring and continually updating these preventive practices define an organization’s first line of defense. But what happens in the event that an organization actually suffers a breach? Is there guidance that might be available, particularly to healthcare organizations, to deal with continuity and disaster planning (BC/DR) directed towards assuring resilience and recovery in the event of a potentially-disastrous cyberattack?
According to a report by West Monroe Partners, approximately 40% of companies engaged in corporate transactions reported finding a cybersecurity issue during post-acquisition integration of the target company. While companies routinely conduct robust transactional due diligence to manage legal risk, many fail to adequately conduct cybersecurity due diligence. As a consequence, many companies and investors are leaving themselves vulnerable to potentially severe latent cyber risks.
Cybersecurity is especially relevant in healthcare transactions as the industry ...
Blog Editors
Recent Updates
- New Proposed Federal Legislation Takes Aim at Concerns Regarding Perceived “Looting” of Health Care Systems by Private Equity Investors
- Podcast: The Future of Laboratory Testing Just Got a Little Clearer - FDA's Final Rule on LDTs – Diagnosing Health Care
- How Does the End of Chevron Deference Change the Relationship Between the Health Care Industry, Federal Regulators, and Congress?
- Podcast: Down Goes Chevron: A 40-Year Precedent Overturned by the Supreme Court – Diagnosing Health Care
- Thoughts: AB 3129 Expands Its Reach