I’m Kate Dewhirst.

I’m a lawyer who writes about legal issues affecting healthcare in Canada

Kate Dewhirst Health Law - bringing the law to life. Meet Kate (in 13 seconds)

Cyber Risk Management – What’s a Privacy Officer to Do?

Posted by

Have you seen this tool from HIROC – the Health Insurance Reciprocal of Canada?

Cyber-Guide

If you are a Privacy Officer in healthcare – you should read this tool.  It’s great. It’s brand new – November 2017.

You may have a vague understanding of words like “ransomware” and “phishing” and “social engineering“.  And maybe you have team members who deal with the security aspects of your organization’s privacy program.  But any Privacy Officer needs to have more than a passing understanding of cyber risks.

The more you know, the better you are going to be at explaining these risks to your team members.

I’m not going to lie. Reading this guide is going to raise your blood pressure.

There are risks in here you probably never thought about before: like the notice issued in 2016 from Johnson & Johnson about their insulin pumps not being encrypted – which left them vulnerable to hacking.  That’s not good.  I have read other stories about cyber risks for implantable medical devices. We all need to keep up with changing technology and its associated risks.

Let me also reassure you that the guide gives practical step-by-step tips on how healthcare organizations can manage cyber risks and what you can do to equip your team to recognize and prevent cyber interference.

Take Action: If you are a Privacy Officer and you want to learn more about your role, I am doing an Advanced Privacy Officer course on January 16, 2018  (details coming soon) and my signature Privacy Officer course starts again in May 2018.  Email me for details: kate@katedewhirst.com


If you enjoyed this article please share it:


Previous and next posts from Kate:

Some of Kate’s recent and upcoming events

Team Privacy Training Events

February 1, 11, 12, 27, March 21

For Primary Care clinics and FHTs

Kate trains health professionals from many more primary care organizations how being privacy-respectful can improve therapeutic relationships. more details...

Resilience for Lawyers

February 6, 2019

with Sharon Duffy and the Law Society of Ontario

Legal coaching session getting your goals back on track. More details...

Primary care webinars: Discrimination & Privacy Update

February 7 and March 7, 2019, 12 noon

Part of Kate’s monthly webinar series.

Our February webinar is on avoiding claims of discrimination, and in March get an update on the latest privacy issues.

Full details of the 2019 webinar series and registration here.

Privacy Officer training

April 30 through June 4, 2019

Kate’s specialist training course for Privacy Officers in health organizations.

Open to all health Privacy Officers, as well as those hoping to become Privacy Officers. Full details and registration for Privacy Officer training next spring here...

Advanced Privacy Officer training

June 18, 2019

For experienced Privacy Officers within healthcare organisations.

This one day training course focuses on how to handle difficult privacy situations using real-life (but anonymized) case studies and role-play. Full details and registration here...

Free healthcare privacy webinar - ask me anything!

February 6, 2019 9-10am and
March 6, 2019 4-5pm

Free webinar - advance registration needed

Whether you're an experience privacy officer or new in the field, pick Kate’s brain for free for an hour, in this live webinar. No charge, but you’ll need to register in advance.

Kate Dewhirst Health Law

Kate says:

My mission is bringing the law to life. I make legal theory understandable, accessible and fun! I’m available and love to work for all organizations in the healthcare sector across Ontario and beyond.

Subscribe to my mailing list and keep up to date with news:

Latest Tweets

Health organizations don’t often think about all the hats they wear and the ways in which they present in the world… https://t.co/KupVwDcGwY

27 minutes ago

There are three key issues hospitals need to manage when recruiting non-licensed physicians to non-medical roles wi… https://t.co/TDbUnF0cVZ

about 12 hours ago

Sometimes I get the blues. Maybe you do too. I mean how many “growth opportunities” can one person handle? What les… https://t.co/pg3GehSLlh

about 18 hours ago

contact details

901 King Street West Suite 400 East Tower
Toronto Ontario M5V 3H5

(416) 855 9557