Elaine Zacharakis was quoted in two Inside CyberSecurity articles.
In the May 18, 2018 article on the U.S. healthcare companies HIPPA process coming under scrutiny in the wake of the new European Union’s General Data Protection Regulation (GDPR), Ms. Zacharakis’s presentation to HIMSS was quoted regarding the doubts about the use of HIPPA Safe Harbor for “De-identification” of data. The presentation said, “As a matter of terminology, Europeans prefer the term ‘anonymization’ to ‘de-identification.’ Some DPAs will assert that anonymization is a higher standard.”
The May 21, 2018 article discusses the U.S. governments concern regarding how the insufficient guidance on the new EU data privacy and security regulation will affect companies in the U.S. In the article, Ms. Zacharias’s noted that “The Europeans take a comprehensive approach to privacy to protect personal data and have special provisions for sensitive data which includes health data. The U.S. takes a sectoral approach to privacy.”
“It will be interesting to see how our systems evolve based upon the influence of the Europeans globally with regards to privacy,” she said, adding, “All U.S. healthcare entities should be aware of the increased territorial reach created in the GDPR with regards to data subjects in the European Union.”