Establishing and maintaining effective systems to protect sensitive personal data and confidential business information from outside interference while also assuring that privacy interests are protected is among an organization’s highest priorities. Our security and privacy team at Epstein Becker & Green has written extensively about the guidance and best practices issued by federal and state regulatory and enforcement agencies. Execution, monitoring and continually updating these preventive practices define an organization’s first line of defense. But what happens in the event that an organization actually suffers a breach? Is there guidance that might be available, particularly to healthcare organizations, to deal with continuity and disaster planning (BC/DR) directed towards assuring resilience and recovery in the event of a potentially-disastrous cyberattack?
According to a report by West Monroe Partners, approximately 40% of companies engaged in corporate transactions reported finding a cybersecurity issue during post-acquisition integration of the target company. While companies routinely conduct robust transactional due diligence to manage legal risk, many fail to adequately conduct cybersecurity due diligence. As a consequence, many companies and investors are leaving themselves vulnerable to potentially severe latent cyber risks.
Cybersecurity is especially relevant in healthcare transactions as the industry ...
- NJ Approves Cannabis Regulatory Amendment with Major Impacts on Class 5 Retail License Holders
- Unpacking Averages: Device Manufacturers Should Use the Newly Released Demographic Data in MDRs to Ensure Their Devices Are Not Disproportionately Hurting Minorities
- CMS Announces Comprehensive Plan to Ensure EMTALA Compliance
- Telehealth’s Roadblock: The Issue with State Licensure Requirements
- CMS Announces New Primary and Behavioral Health Care Integration Demonstration Model