Health Privacy Update: 4 new health privacy decisions of the IPC released

On Friday January 12, the Information and Privacy Commissioner of Ontario released four new decisions. Here is my updated summary of all 64  IPC PHIPA Decisions Decision 61: Reasonable Search: A physician received a request for access to all records relating to the complainant’s deceased son. The complainant believed additional records should exist. The physician said… Read more »

Start keeping track of all privacy breaches – Report due March 2019

Just a reminder that as of January 1, 2018 if you are a health information custodian you need to start keeping track of certain information relating to privacy breaches. The Information and Privacy Commissioner of Ontario released guidelines that will come into effect March 2019 but require you to start tracking certain kinds of privacy breaches now…. Read more »

In Memoriam – My sister Beth Ferkranus

It is with great sadness that I announce my little sister, Beth Ferkranus, passed away over the holidays.  It was sudden and completely unexpected.  We are all devastated.  You can read her Obituary here. I want to thank everyone for your kindness and the outpouring of love we have received. Some of you know that my sisters are… Read more »

Health Privacy Update – November 2017 – 4 new decisions of the IPC

The Information and Privacy Commissioner of Ontario released four new PHIPA decisions today. These are relevant to any health care organization in Ontario. Read the summaries of all 60 IPC PHIPA Decisions here. Decision 57: A patient made an access request at a hospital. The patient wanted to know why he was being told by physicians at the… Read more »

Talking about risk and statutory compliance without scaring or boring your board

If you are a CEO or ED of a healthcare organization, you need to talk to your board about risk. How do you do it without scaring them or boring them? You make risk real. You explain real situations that have happened to similar organizations. Here are a couple of pointers: Give them a risk architecture:… Read more »