Establishing and maintaining effective systems to protect sensitive personal data and confidential business information from outside interference while also assuring that privacy interests are protected is among an organization’s highest priorities. Our security and privacy team at Epstein Becker & Green has written extensively about the guidance and best practices issued by federal and state regulatory and enforcement agencies. Execution, monitoring and continually updating these preventive practices define an organization’s first line of defense. But what happens in the event that an organization actually suffers a breach? Is there guidance that might be available, particularly to healthcare organizations, to deal with continuity and disaster planning (BC/DR) directed towards assuring resilience and recovery in the event of a potentially-disastrous cyberattack?
Blog Editors
Recent Updates
- Last Call for Comments on the Bipartisan Discussion Draft of the SUSTAIN Act: Shaping 340B for the Future
- Indiana Senate Enrolled Act 9 Requires Written Notice of Health Care Entities’ Mergers or Acquisitions
- Connecticut Bill Calls for Office of Health Strategy to Develop a Plan Regarding Private Equity Firms in Health Care
- Revised OCR Guidance Provides New Examples, but Raises More Questions, Regarding Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates
- FDA Releases Draft Guidance on New Dietary Ingredient Notification Procedures, Timelines