I’m Kate Dewhirst.

I’m a lawyer who writes about legal issues affecting healthcare in Canada

Kate Dewhirst Health Law - bringing the law to life. Meet Kate (in 13 seconds)

Cyber Risk Management – What’s a Privacy Officer to Do?

Posted by

Have you seen this tool from HIROC – the Health Insurance Reciprocal of Canada?

Cyber-Guide

If you are a Privacy Officer in healthcare – you should read this tool.  It’s great. It’s brand new – November 2017.

You may have a vague understanding of words like “ransomware” and “phishing” and “social engineering“.  And maybe you have team members who deal with the security aspects of your organization’s privacy program.  But any Privacy Officer needs to have more than a passing understanding of cyber risks.

The more you know, the better you are going to be at explaining these risks to your team members.

I’m not going to lie. Reading this guide is going to raise your blood pressure.

There are risks in here you probably never thought about before: like the notice issued in 2016 from Johnson & Johnson about their insulin pumps not being encrypted – which left them vulnerable to hacking.  That’s not good.  I have read other stories about cyber risks for implantable medical devices. We all need to keep up with changing technology and its associated risks.

Let me also reassure you that the guide gives practical step-by-step tips on how healthcare organizations can manage cyber risks and what you can do to equip your team to recognize and prevent cyber interference.

Take Action: If you are a Privacy Officer and you want to learn more about your role, I am doing an Advanced Privacy Officer course on January 16, 2018  (details coming soon) and my signature Privacy Officer course starts again in May 2018.  Email me for details: kate@katedewhirst.com


If you enjoyed this article please share it:


Previous and next posts from Kate:

Some of Kate’s Upcoming events

Where immigration and health law issues collide

April 25, 2018

Presentation to invited Community Health Centre clients

In collaboration with immigration lawyer Jacqueline Swaisland.

2018 Privacy Officer Training

May 8 to June 12, 2018

16 hours live and online training

for Privacy Officers and Privacy Officers-to-be. Live sessions held in Toronto. Course is now full, but here are details and booking for Kate's October course.

De-escalation training

May 16, 2018

Training session for a Toronto Family Health Team

In conjunction with leadership coach Christine Burych.

Team Privacy Training Events

May 17, June 13

For Primary Care clinics and FHTs

Kate trains health professionals from another two primary care organizations how being privacy-respectful can improve therapeutic relationships. more details...

Ask me anything (about health privacy)

12 noon, May 23, 2018

An hour webinar with Kate where you can ask Kate any privacy-related questions you have.

Open to all health Privacy Officers. Register here.

Kate Dewhirst Health Law

Kate says:

My mission is bringing the law to life. I make legal theory understandable, accessible and fun! I’m available and love to work for all organizations in the healthcare sector across Ontario and beyond.

Subscribe to my mailing list and keep up to date with news:

Latest Tweets

What does a Privacy Officer do in a health care organization? https://t.co/rQRBq051u3 #healthprivacy #HealthLaw #TorontoLawyer

about 4 hours ago

The Commissioner provided an update on Latest Developments at the IPC. Here are some highlights.… https://t.co/XKVkb6Aunm

about 8 hours ago

Have you looked at your hospital’s Professional Staff Rules and Regulations lately? https://t.co/CTp6xa8OyC #HealthLaw #hospitals

about 10 hours ago

contact details

901 King Street West Suite 400 East Tower
Toronto Ontario M5V 3H5

(416) 855 9557