I’m Kate Dewhirst.

My team and I write about legal issues affecting healthcare in Canada.

Kate Dewhirst Health Law - bringing the law to life. Meet Kate (in 13 seconds)

Cyber Risk Management – What’s a Privacy Officer to Do?

Posted by

Have you seen this tool from HIROC – the Health Insurance Reciprocal of Canada?

Cyber-Guide

If you are a Privacy Officer in healthcare – you should read this tool.  It’s great. It’s brand new – November 2017.

You may have a vague understanding of words like “ransomware” and “phishing” and “social engineering“.  And maybe you have team members who deal with the security aspects of your organization’s privacy program.  But any Privacy Officer needs to have more than a passing understanding of cyber risks.

The more you know, the better you are going to be at explaining these risks to your team members.

I’m not going to lie. Reading this guide is going to raise your blood pressure.

There are risks in here you probably never thought about before: like the notice issued in 2016 from Johnson & Johnson about their insulin pumps not being encrypted – which left them vulnerable to hacking.  That’s not good.  I have read other stories about cyber risks for implantable medical devices. We all need to keep up with changing technology and its associated risks.

Let me also reassure you that the guide gives practical step-by-step tips on how healthcare organizations can manage cyber risks and what you can do to equip your team to recognize and prevent cyber interference.

Take Action: If you are a Privacy Officer and you want to learn more about your role, I am doing an Advanced Privacy Officer course on January 16, 2018  (details coming soon) and my signature Privacy Officer course starts again in May 2018.  Email me for details: kate@katedewhirst.com


If you enjoyed this article please share it:


Previous and next posts from Kate:

Some of Kate’s recent and upcoming events

Free healthcare privacy webinar - ask me anything!
the first Wednesday of every month

Free webinars - advance registration needed

Whether you're an experienced privacy officer or new in the field, pick Kate’s brain for free for an hour, in this live webinar. No charge, but you’ll need to register in advance.

Health Privacy Officer Foundations training
starts April 25 2023

For Privacy Officers within healthcare organizations.

This course focuses on how to become a more confident privacy officer and gives you the tools to document your privacy program. Full details and registration here...

Join the Shush: a collective of health privacy officers
Annual membership 2023

For Privacy Officers within healthcare organizations

This is an annual membership program that takes theory into practice and tackles real life scenarios to build Privacy Officer skills.
Full details and registration here.

Primary care webinars: Employment Law Update & Legal Issues for EDs and Board members

Part of Kate’s monthly webinar series.

Our February program will address an update on the laws that apply to Primary Care Teams and in March we discuss human rights tips.
Full details of the 2023 webinar series and registration here.

Team Privacy Training Events

For Primary Care clinics, Hospitals, Community Agencies, Mental Health Teams, Public Health Units, School Boards, Police departments

Kate trains health professionals from many more health care organizations how being privacy-respectful can improve therapeutic relationships. More details...

Join the Proof: a collective of Credentialing Officers
Annual membership 2023

For Credentialing Officers from hospitals such as Medical Affairs leaders, Chiefs of Staff and Credentialing Committee Chairs

This is an annual membership program that builds capacity within your hospital.
Full details and registration here.

Free summary of all PHIPA IPC decisions

Want to read privacy breach stories to learn how to improve your work? We have summarized all the Information and Privacy Commissioner's health privacy decisions for you Download here...

Kate Dewhirst Health Law

Kate says:

My mission is bringing the law to life. I make legal theory understandable, accessible and fun! I’m available and love to work for all organizations in the healthcare sector across Ontario and beyond.

Subscribe to my mailing list and keep up to date with news:

Latest Tweets


Register now for this FREE upcoming Ask Me Anything. We cover topics like: - video surveillance - snooping - infor… https://t.co/dL1jAgm7nY

01:00 PM Jan 27th

[EARLY BIRD UNTIL END OF JANUARY] This is where you belong. The Proof is a community for hospital Credentialing Off… https://t.co/BLox3utK0D

01:00 PM Jan 26th

contact details

P.O. Box 97010 Roncesvalles
Toronto Ontario M6R 3B3

(416) 855 9557

.