This session is intended to provide guidance for the healthcare industry regarding how to navigate the long line of new privacy and security regulations impacting the healthcare industry, including omnibus privacy likes (such as the CCPA and GDPR), as well as regulations targeting the healthcare industry, such as recent NIST and FDA regulations related to cybersecurity, privacy, and digital health. As chair of the Minnesota chapter of the International Association of Privacy Professionals, and current data protection officer for several healthcare and medical device companies, I have observed the growing business concerns around the healthcare about the ever-growing list of new privacy and security regulations. This concern has been exacerbated by the constant march of news stories regarding major healthcare-related ransomware attacks and other data breaches, which only increases legislative activity in the space. I have also dealt with the issue from the legislator's perspective, including working directly with local Minnesota legislators to advise regarding new privacy and cybersecurity regulations, as well as consulted with foreign governments in developing privacy regulations that impact manufacturers across the country.
The goal of the session is to help industry professionals connect the dots regarding the similarities of many of these regulations, provide an update about major changes that have recently occurred, teach some tips and tricks to avoid the thornier requirements of some laws, and convey expectations about what to expect over the next several years from regulators and legislators.
My profile: https://winthrop.com/attorneys/n-schwen