Dealing with Data Breaches: Legal, Practical and Financial Issues
Recent Federal and state regulations require reporting breaches of protected health information, as well as reporting of breaches of personal information. Data breaches can result from theft, inadvertent error, misconduct, malicious hacking or unavoidable accidents. The consequences to a practice that sustains a data breach can include reputational damage, direct costs of notification, remediation expenses and possible liability to patients, business partners and others.
Responding to a data breach requires the use of expertise from multiple fields, including information technology, law, public relations, customer service and insurance. Large data breaches can pose a wide variety of complex challenges for organizations.
This education session will include presentations by attorneys in the healthcare, privacy and insurance practice groups of Edwards Angell Palmer & Dodge LLP who have experience in dealing with a variety of data breaches in several different states.
The program will review:
Events that trigger data breach notification obligations, and applicable exceptions
The need for a thorough investigation, and the risks of starting the notificatinos process before the facts are known
Problems posed by multi-state data breaches
Ted Augustinos
Ted is a member of EAPD’s Privacy and Data Protection Group, and the Breach Response Team. He advises clients of all sizes and in all industries as to their compliance with various state, federal and contractual requirements for privacy and data security policies and procedures. In response to data breaches, Ted has led teams of internal and external client resources in forensic investigations, notifications to affected individuals and notices to contractual counterparties and governmental agencies. Laurie Kamaiko Laurie is also a member of EAPD’s Privacy and Data Protection Group. She advises clients on the exposures and risk management issues involved in data breaches, including the exposures to third party claims. In addition, Laurie regularly analyzes the potential insurance coverage available for the costs and claims that arise when an organization has sustained a data breach. David Szabo Dave is a member of EAPD’s Healthcare Group, as well as the Privacy and Data Protection Group. He advises healthcare organizations on a wide range of regulatory issues, including privacy and information security matters. He is a member of the Consortium’s Board of Directors, and serves as co-chair of the Massachusetts e-Health Institute’s Ad Hoc Privacy and Security Work Group. About Edwards Angell Palmer & Dodge LLP Edwards Angell Palmer & Dodge LLP is a full service international law firm. The Firm’s privacy group has represented health care providers, health insurers, retailers, financial service companies on privacy, security and data breach matters. The Firm also represents leading insurance underwriters on privacy and data breach coverage matters.
Ted is a member of EAPD’s Privacy and Data Protection Group, and the Breach Response Team. He advises clients of all sizes and in all industries as to their compliance with various state, federal and contractual requirements for privacy and data security policies and procedures. In response to data breaches, Ted has led teams of internal and external client resources in forensic investigations, notifications to affected individuals and notices to contractual counterparties and governmental agencies.
Laurie Kamaiko
Laurie is also a member of EAPD’s Privacy and Data Protection Group. She advises clients on the exposures and risk management issues involved in data breaches, including the exposures to third party claims. In addition, Laurie regularly analyzes the potential insurance coverage available for the costs and claims that arise when an organization has sustained a data breach.
David Szabo
Dave is a member of EAPD’s Healthcare Group, as well as the Privacy and Data Protection Group. He advises healthcare organizations on a wide range of regulatory issues, including privacy and information security matters. He is a member of the Consortium’s Board of Directors, and serves as co-chair of the Massachusetts e-Health Institute’s Ad Hoc Privacy and Security Work Group.
About Edwards Angell Palmer & Dodge LLP
Edwards Angell Palmer & Dodge LLP is a full service international law firm. The Firm’s privacy group has represented health care providers, health insurers, retailers, financial service companies on privacy, security and data breach matters. The Firm also represents leading insurance underwriters on privacy and data breach coverage matters.
Ray has over 20 years experience in various positions at the intersection of government, public policy, law, and technology. He has a BA from Bates College, a JD from Suffolk University, and an MPA from Harvard University.
Please join us for this month's ICD-10 Forum.
ICD-10 Translations: Maps and GEMS Practical Applications An overview of concepts and principles, including some case studies as well as guidelines for practically putting processes in place to work through this within your organization. Speakers: Caroline R. Piselli ICD-10 and P4P Program Manager 3M Health Information Systems, Inc. Anne M. Boucher Clinical Research Systems Implementation Manager 3M Health Information Systems, Inc.
ICD-10 Translations: Maps and GEMS Practical Applications
An overview of concepts and principles, including some case studies as well as guidelines for practically putting processes in place to work through this within your organization.
Speakers:
Caroline R. Piselli ICD-10 and P4P Program Manager 3M Health Information Systems, Inc.
Anne M. Boucher Clinical Research Systems Implementation Manager 3M Health Information Systems, Inc.
Health Mart 2010 Conference and Trade Show: How to Achieve Meaningful Use
* The prices for these opportunities are for members of the Massachusetts Health Data Consortium. Non-members pay an additional $250.
Click HERE for details on what your Vendor Opportunity includes.
For more info about these or other Vendor Opportunities, please contact Arleen Coletti at 781-419-7815 or via email.
As Chief Operating Officer for RMF Strategies, a division of CRICO/RMF, Ms. Riah oversees all operations for the organization including product development, sales and strategic alliances. Additionally, Ms. Riah is the COO for the OB Team Training Program; Team Performance Plus (TPP), which is run in association with clinical staff from Beth Israel Deaconess Medical Center. Ms. Riah has over twenty years experience in the insurance industry.
Kristin Darby joined CRICO/RMF as Chief Information Officer (CIO) in July 2009. In that capacity, she is responsible for the strategy and planning of all internal as well as RMF Strategies facing technology components, including development, maintenance and support of all hardware/software infrastructure and applications to support CRICO/RMF. Ms. Darby has more than 15 years of Information Technology and Healthcare experience and numerous technical certifications which include Cisco, Microsoft, Lotus and Six Sigma Green Belt.
Massachusetts Health Data Consortium - 460 Totten Pond Road - Suite 690 - Waltham, Massachusetts 02451 - 781.419.7800 - www.mahealthdata.org - Copyright 2010
Payment Policy: Payments (where applicable) must be made at point of registration. Cancellations: No refunds given for cancellations within 72 hours of an event.