regulations + accountability Flashcards
NIST Cybersecurity Framework
One of the most widely used frameworks; provides guidelines for managing cybersecurity risks
GDPR
General Data Protection Regulation (EU)
Data protection, security, and breach notification requirements
HIPAA
Health Insurance Portability and Accountability Act
Standards for protection of patient health information
IRP
Incident Response Plan
IDPS
Intrusion Detection and Prevention
What is a firewall?
A network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules
Factors monitored in DPIA
- Level of anonymity
- Level of transparency
- Is there a lawful basis for processing the data
acronym ATL
DPIA
Data Protection Impact assessments: Tools to manage risks
Factors monitored in DPIA
- Level of anonymity
- Level of transparency
- Is there a lawful basis for processing the data
Encryption
Converting sensitive data into an unreadable format that can only be accessed with a decryption key
Network segmentation
Dividing a network into smaller, isolated segments to reduce the risk of a security breach spreading throughout the entire network
IRP
Incidence Response Plan
What is blockchain?
creating secure and decentralize log of healthcare transactions for efficiency and security
algorithmic impact assessment
mandatory risk assessment that determines impact of automated system
Digital technology assessment criteria for digital health solutions
framework describing evidence required to demonstrate effectiveness (i.e. is it worth the cost) for digital technologies
Standards include clinical safety, data protection, cyber security, interoperability and accessibility
