I’m Kate Dewhirst.

I’m a lawyer who writes about legal issues affecting healthcare in Canada

Kate Dewhirst Health Law - bringing the law to life. Meet Kate (in 13 seconds)

Category: Mental health facilities


Talking about risk and statutory compliance without scaring or boring your board

Posted by

If you are a CEO or ED of a healthcare organization, you need to talk to your board about risk. How do you do it without scaring them or boring them? You make risk real. You explain real situations that have happened to similar organizations. Here are a couple of pointers: Give them a risk architecture:… Read more »


Cyber Risk Management – What’s a Privacy Officer to Do?

Posted by

Have you seen this tool from HIROC – the Health Insurance Reciprocal of Canada? Cyber-Guide If you are a Privacy Officer in healthcare – you should read this tool.  It’s great. It’s brand new – November 2017. You may have a vague understanding of words like “ransomware” and “phishing” and “social engineering“.  And maybe you… Read more »


New guidelines from IPC require Ontario’s healthcare organizations to start tracking privacy breaches in January 2018

Posted by

The Information and Privacy Commissioner of Ontario released new guidelines that will come into effect March 2019 but require healthcare organizations to start tracking certain kinds of privacy breaches as of January 2018. Click here for the Annual Reporting of Privacy Breach Statistics to the Commissioner guidelines. Starting January 1st, Ontario’s healthcare organizations (all those who… Read more »


Health Privacy Update #3 – October 2017 – WOW! 6 new decisions of the IPC released last week

Posted by

Ontario’s Information and Privacy Commissioner just released six new health privacy decisions at the end of last week. Want to know what they are about? You can read my updated summaries of all 56 of the IPC PHIPA Decisions. Or keep reading this blog for summaries of these six. The decisions are not listed in chronological… Read more »


What you say matters: Mission, vision and values

Posted by

What commitments have you made to your patients, team members and the public? When I work with a healthcare organization through a difficult situation (like a patient complaint or a privacy breach) I always look at their mission, vision and values.  These public statements should guide all decision making through difficult times.  These statements are your guide… Read more »


Health Privacy Update #2 – October 2017 – 2 new decisions of the IPC

Posted by

Last week the IPC issued two new decisions for health care organizations in Ontario. The first one has practical impact on group practices like family health teams. Group practices should proactively clarify who is the health information custodian  Decision 50 – This one will interest all family health teams and other group practices. It relates to… Read more »


Health Privacy Update – October 2017 – New IPC Privacy Breach Report Form for new required reporting as of October 1st

Posted by

The IPC has posted their new Privacy Breach Reporting Form online. This is what health care organizations will use to alert the IPC to reportable privacy breaches as described in my previous post   These requirements came into effect October 1st. Here’s a PDF version of the Privacy Breach Report Form.    


Stop and think before you post any of the following on social media

Posted by

If you are a health care leader, at some point you have wondered about the risks of social media. You know you need to use social media platforms to share your organizational message. And you may want to expand what you are doing though social media in order to stay relevant with your patient population like add… Read more »


Privacy Officer training for Primary Care Clinics – October and November 2017

Posted by

If you are a Privacy Officer for a primary care clinic – this course is for you! Full details and registration I have taught a few hundred Privacy Officers how to feel more confident in what they do.  It’s my passion to bring the law to life. Through storytelling and scenario-based learning you will learn… Read more »


Health Privacy Update – September 2017 – 2 new IPC guidance documents for health care organizations

Posted by

The Information and Privacy Commissioner of Ontario just released a new practice guideline last week to assist health care organizations to better understand their upcoming new obligations to report privacy breaches to the IPC. Here is the document: health-privacy-breach-notification-guidelines Those new obligations come into effect on October 1st. A few weeks ago, the IPC released another practice direction related to  Frivolous and… Read more »


Some of Kate’s recent and upcoming events

Team Privacy Training Events
February 12, 19, 26, 27, Mar 2, 9, 11, 24, 27

For Primary Care clinics, Hospitals, Community Agencies and Children’s Aid

Kate trains health professionals from many more health care organizations how being privacy-respectful can improve therapeutic relationships. More details...

Speaking event March 25, 2020

Osgoode Professional Development – Health Law Certificate

Kate joins the faculty for this training event. More details...

Primary care webinars: Employment Law Update & Legal Issues for EDs and Board members

Part of Kate’s monthly webinar series.

Our March webinar is on questions to ask your insurer and the April program is on changes to pregnant employees' positions.
Full details of the 2020 webinar series and registration here.

Health Privacy Officer training
April 28, 2020

For Privacy Officers within healthcare organisations.

This course focuses on how to become a more confident privacy officer and gives you the tools to document your privacy program. Full details and registration here...

Osgoode Health Privacy training
January 20 & 27 and February 3,10 & 18, 2020

Kate is the program chair for the Osgoode Certificate in Privacy in Healthcare.

This program explores the range of privacy interests that must be protected in the day-to-day treatment of patients, the development of information systems and the creation of institutional policies. More details...

Free healthcare privacy webinar - ask me anything!
March 4 (cancelled) but back April 1

Free webinars - advance registration needed

Whether you're an experienced privacy officer or new in the field, pick Kate’s brain for free for an hour, in this live webinar. No charge, but you’ll need to register in advance.

Kate Dewhirst Health Law

Kate says:

My mission is bringing the law to life. I make legal theory understandable, accessible and fun! I’m available and love to work for all organizations in the healthcare sector across Ontario and beyond.

Subscribe to my mailing list and keep up to date with news:

Latest Tweets

It is important for CAS leaders, lawyers and privacy officers to explain the changes in philosophy and practices in… https://t.co/llGPhdOUPI

about 19 hours ago


contact details

901 King Street West Suite 400 East Tower
Toronto Ontario M5V 3H5

(416) 855 9557

.