The recent EU General Data Protection Regulation enforcement action against a Portuguese hospital shows that complying with the GDPR might be more complicated than complying with the Health Insurance Portability and Accountability Act, BankInfoSecurity reports. Davis Wright Tremaine Privacy Attorney Adam Greene said that while the case serves to demonstrate “significant overlap between HIPAA and GDPR,” he notes that “it also shows that GDPR enforcers may expect more stringent privacy and security controls than are typically practiced under HIPAA.” Editor's Note: Dr. Ana Menezes Monteiro, CIPP/E, CIPM, CIPT, FIP, recently provided an analysis of Portugal's enforcement action for The Privacy Advisor.
Full Story
Comments
If you want to comment on this post, you need to login.