HIPAA regulations continue to apply after an individual's death, as they protect the confidentiality and privacy of deceased patients' protected health information (PHI), ensuring that healthcare providers, insurers, and other covered entities maintain the same...
HIPAA Violations Examples
HIPAA violation examples refer to instances where individuals or organizations within the healthcare sector fail to comply with the privacy and security regulations outlined in HIPAA, such as unauthorized disclosure of protected health information (PHI), insufficient...
GDPR: Identifying personal data & sensitive data
Given that more than a year has passed since the European Union's General Data Protection Regulation (GDPR) was implemented, on the 25th May 2018 to be precise, most businesses are aware that they have a legal obligation to protect any ‘personal data’ which they...
GDPR compliance for US based companies: What are the key legal concerns?
Commonly recognised as the toughest privacy and security law on the planet, the European Union’s General Data Protection Regulation (or GDPR), imposes legal obligations on companies and organizations anywhere, so long as they handle data related to people situated in,...
The Seven Core Principles of the GDPR: What American Business should know
On May 25th, 2018, the European Union’s General Data Protection Regulation (GDPR) replaced the Data Protection Directive of 1995. Unlike the previous legislation, the GDPR affects businesses and organisations which are based outside of the EU. The simple fact that all...
Why You Should Consider a GDPR Representative Office in Ireland
The General Data Protection Regulation applies to any data controller and processor who deals with the data of EU citizens or residents, whether the data handler is based within the European Union or not. In addition to ensuring that they meet general compliance...
The GDPR and the Brussels Effect
The General Data Protection Regulation came into effect throughout the member states of the European Union on the 25th May 2018. As you are no doubt already well aware, the GDPR is, in simple terms, a new framework of conditions aimed at giving citizens of the...
What are the GDPR Password Requirements?
The new General Data Protection Regulation (GDPR) which comes into force in May 2018 does not outlaw the use of a simple username and static password system for accessing personal data, but GDPR does state that data access procedures need to be secure. More...
GDPR Compliance in the Insurance Sector
The General Data Protection Regulation (GDPR) became enforceable on May 25 2018 and brought with it a number of rules that could, if broken, may result in the sanctioning of heavy fines. One sector where GDPR has had a huge impact is insurance industry, particularly...
Two years of the GDPR: What should American businesses have already learned? What can they now expect?
Implemented on the 25th of May 2018, Europe’s General Data Protection Regulation (GDPR), has now entered the terrible twos. Birthdays are an occasion to take stock, and this anniversary is particularly interesting from an American perspective. For those who need...
Google to Appeal $7.45m Swedish GDPR Non-Compliance Fine
Privacy Authority to impose $8 Million Penalty Google has announced that it intends to appeal the recent General Data Protection Regulation fine, its second, levied by Sweden's Data Protection Authority against the internet giant. A fine of 75 million kroner...
Amazon Meets with GDPR Troubles on the Eve of Covid-19
Various industry specialists, including Adobe Analytics, have reported that increasing consumer concern, and indeed shop closures, following the worldwide COVID-19 outbreak is already influencing our online shopping behaviour in a significant manner. While traditional...
Who is Exempt from GDPR Requirements?
The General Data Protection Regulation became enforceable on May 25, 2018 and from that date companies that gather or use the personal data of EU residents were obligated to require with the GDPR, although there are restricted GDPR exemptions and derogations. Who Must...
Dutch Data Protection Authority issues first GDPR-fine
The Haga Hospital in the Hague has become the first Dutch body to be fined for violation of Europe's new privacy law, the General Data Protection Regulation (GDPR). NU.nl has reported that a fine of €460,000 is being imposed on the Hospital for failing to provide a...
Visitor Books: Will the GDPR make them a thing of holidays past?
According to a story first reported by the Irish Times on the 23rd of July 2019, it appears that the reach of the General Data Protection Regulation may extend to a form of record keeping that few would have envisaged as relevant when the regulation was first drafted:...
GDPR: French Real Estate Company Faces €400,000 Fine
In January 2019 the French Data Protection Authority (the CNIL), hit Google LLC with a record €50m fine for failing to comply with the EU's General Data Protection Regulation (GDPR). A decision made on the 28th May 2019 which imposes a €400,000 fine on SERGIC, a real...
British Airways faces potential €200 million GDPR fine
The UK Information Commissioner's Office (ICO) has announced that it intends to fine British Airways for a recent infringement of the General Data Protection Regulation (GDPR). The security breach occurred when British Airways customers were directed away from the BA...
GDPR celebrates its first birthday
Today marks the first anniversary of the introduction of the European Union's General Data Protection Regulation (GDPR). As the solitary candle of the birthday cake is being blown out, we can take a moment to reflect upon what has undoubtedly been an eventful debut...
First GDPR fine issued by Italian Data Protection Authority
Italy's first GDPR fine has been issued by the Garante, the Italian Data Protection Authority. Action was taken due to the failure to implement privacy security measures in the aftermath of a data breach on the “Rousseau” platform. The platform operates the websites...
Infographic: GDPR Data Protection Officer Duties
Infographic: GDPR Privileged Data
Infographic: GDPR Core Rights of the Data Subject
Infographic: GDPR Rules for Processing Personal Data
Infographic: GDPR by the Numbers
GDPR Dirty Dozen: Myths, Misconceptions, and Misunderstandings about GDPR
The General Data Protection Regulation will be enforceable from Friday, May 25. Consequently, there has been a lot of media coverage of this new European Union leglisation. There are a lot of misconceptions concerning what GDPR actually states, whom it affects and how...
GDPR Guideline for Companies with less than 250 Employees
By now, most company owners will have heard more than they want to about the General Data Protection Regulation, commonly referred to as GDPR. Since 25th May 2018, businesses that process personal data relating to data subjects in the European Union (EU) are subject...
What is Vital Interest in GDPR?
The term 'vital interests' is not new. In fact, it was written into legislation in Schedule 2 paragraph 4 of the 1998 Act. At the time 'vital interests' referred to those of subjects whose data was being collected. GDPR has widened the term to include more than the...
Does GDPR apply to EU citizens in the United States
The use of the words ‘citizen of the European Union’ can be confusing in the context of the General Data Protection Regulation (GDPR). For GDPR compliance requirements, it makes more sense to talk about individuals who are located “in the Union” (within the EU), and...
What Does GDPR Mean for International Organizations?
It is a common misconception that the General Data Protection Regulation (GDPR), which comes into force on May 25th 2018, only applies to businesses and organizations which are based within the EU and that international organizations will be exempt. This is not the...
What is High Risk Under GDPR?
The introduction of the General Data Processing Regulation (GDPR), on 25 May, 2018, will regulate the way different member states of the EU deal with the protection of personal data of individuals in the EU. The GDPR will lead to a new level of uniformity in regard to...
Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.
COMPREHENSIVE HIPAA TRAINING
Used in 1000+ Healthcare Organizations and 100+ Universities
Privacy is key to everything that we do at J Flowers Health Institute. We require the highest data privacy standards in our daily operations between our team members and patients. The HIPAA compliance and cyber security training we provide to our teams with ComplianceJunction creates enormous value for our organization.
Kevin DeLoach
Chief Operating Officer
J. Flowers Health Institute