The GDPR and HIPAA share many common themes and principles. Both are
comprehensive regulatory schemes, each with the same overarching goal to protect
individual privacy. The California Consumer Privacy Act of 2018 gives consumers more control over the personal data that businesses collect. This will have a significant impact on Healthcare. Both regulate how covered information can be used, disclosed,
maintained and transmitted, as well as how it must be secured. Both also provide
individuals with certain rights to their data. Both new legislation regulates downstream vendors and
both have breach reporting requirements.
Sample Solution
