Despite all the best will in the world and processes in places, data breaches can happen. Here's what to do when/if it happens.
Health data is by definition and function sensitive data, but as anyone seeing patients knows, it is not always practical to get consent when treating a sick patient. It is not necessary to encrypt or anonymise patient data if: The patient as given express consent. It is in the vital interest of the patient, and... Continue Reading →
When you share patient data as a doctor, for example, referring your patient to a cardiologist colleague, you are 'disclosing personal data'. You don't have to disclose the transfer of the information to the patient or data subject if you are still respecting professional confidentiality. The receiver or recipient of this data then becomes the... Continue Reading →
You may think that ensuring compliance with data protection in a large organisation is even harder than in a smaller clinic. However, it can be the complete opposite as you may find yourself having to appoint a Data Protection Officer (DPO) who takes over this role. Whether you need to do this or not will... Continue Reading →
Do you own a fitness tracker? Or even just activate the steps counter on your phone? Most of us have used some sort of health or fitness app, whether to go running or record more intimate details. Most of us have also ticked all the terms and conditions automatically. To comply with GDPR, the information... Continue Reading →