CDM Media’s Senior Director of Content & C-Suite Communities, James Quin is regularly cited in various media stories across a variety of industries. But leading up to these article inclusions are many conversations and insightful commentaries which don’t always make the publication. In this weekly (or more!) new section, James shares his responses to a myriad of tech topics he discusses with journalists.
A proposed regulation under the HITECH Act will provide healthcare consumers the right to learn of personal data disclosures. Senior IT leaders and business executives in healthcare organizations that use lobbyists now need to focus on regulators’ renewed attention to this long-dormant HIPAA issue. James Quin weighs-in on the story.
“The issues with breach notification are numerous, as we’ve seen in other industries. First is the assessment of what was breached and who was affected – regulators tend to err on the side of ‘if you can’t define exactly who/what was affected, you must assume everyone/everything.’ This makes breach notification significantly more complex and more expensive. As a result, the first hurdle to overcome is being in a position to actually understand what is happening with your data at all times. This brings us to the outsourcing-specific angle, that being responsibility in the event of data loss – who holds it between the client and the provider and what measures and controls can be put in place contractually to manage any potential breach.”