By: Joel A. Holt, Esq., CIPP/US Talk about the ever changing world of information security and data privacy. Literally, something new, interesting, or terrible occurs daily. The latest giant balloon in the “parade of horribles” is the American Dental Association (“ADA”) providing its members with a free, electronic copy of the 2016 Dental Procedure […]
Day 1 of the ABA Internet of Things Institute: So, come to find out, the Internet of Things (“IoT”) is not the precursor to SkyNet or a rampant abuse of power by Big Brother. It is fascinating, and yes, slightly frightening. The simple fact is, the IoT is just like any other rapid advance in […]
One recent case that didn’t get much attention, but should have, clarifies Ohio health care providers’ potential exposure for the unauthorized disclosure of patient health information (“PHI”). On August 14, 2015, the Second District Court of Appeals decided Sheldon v. Kettering Health Network. [i] In Sheldon, the Second District addressed patients’ rights related to the […]
Organizations can, and often do, make the mistake of classifying information security as only a compliance matter. Much like taxes, workplace safety, and human resources, information security is governed by a complex set of statutes and regulatory rules. However, unlike the aforementioned areas, information security cannot adequately be solely addressed as a compliance matter.
On February 5, 2016, Hollywood Presbyterian Medical Center was the target of a ransomware attack, in which malefactors seized control of the hospital’s computer systems and demanded a ransom in exchange for returning control.[i] Initial reports indicated that the malefactors demanded 9,000 bitcoin, or $3.6 million, to unlock the system.[ii] On February 17, 2015, the […]