Announcements
Voting is now open!
Members, make your selections in the annual (ISC)² Board of Directors election. Vote Now! Voting is open until Sept. 22.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion

Who is investigating from a GDPR perspective?

If patient records are actually being found on the Internet, then surely GDPR and HIPPA investigations would be forthcoming? Who is going to verify this claim?

 

https://www.computing.co.uk/ctg/news/3081662/medical-scans-records-unsecured?utm_source=Adestra&utm_...

 

Regards

 

Caute_cautim

Tags (2)
3 Replies
Jerry
Newcomer III

Re: Who is investigating from a GDPR perspective?

Companies should be checking their own periodically with scans and in other ways.  If you are found to be leaking that PHI, then you will pay. 

Caute_cautim
Community Champion

Re: Who is investigating from a GDPR perspective?

@JerryHI Jerry, the operative word being "should" but they do not - so is penalties the answer?  Or should it be going to the root of the problem within the C Series with better education or do human being really want learn the hard way through attrition or public embarrassment?

 

Regards

 

Caute_cautim

Jerry
Newcomer III

Re: Who is investigating from a GDPR perspective?

Education and training are needed.  If it takes negative publicity and fines, then so be it.  At some point, leadership has to take things seriously.