During this session, the panel discussed strategies and business considerations when addressing compliance with the wide array of data protection and privacy laws and regulations across the United States and abroad. The panel shared insights on compliance and monitoring strategies as well as best practices in working with internal stakeholders.
Session panelists:
- Rebecca Daley, Esq., Senior Associate Counsel, Office of the General Counsel, University of Maryland Medical System
- David Linestky, Senior Vice President, Life Sciences, Phreesia
- Roshal Marshall, Managing Chief Counsel, Enterprise Data Privacy, Security and Technology Law, McKesson Corporation
- Erik Phelps, Executive Vice President, Chief Administrative and Legal Officer, Tempus Labs, Inc.
- Sharon Lamb, Partner, McDermott Will & Emery
- Moderator: Amy Pimentel, Partner, McDermott Will & Emery
Top takeaways included:
- Saying that the privacy landscape is “dynamic” is an understatement. The rapidly evolving landscape is challenging to operationalize, as many companies find that their lines of business operate under different (and often overlapping) areas of the regulatory framework.
- As digital health solutions continue to be embedded in traditional health offerings, one challenge that lies ahead is the ability to “future proof” compliance strategies. It will be critical to remain flexible as future collaborations present opportunities for industry growth and development.
- It is crucial for business leaders to understand their organization’s data collection, storage and sharing processes and how they want to leverage data as an asset. This knowledge is particularly important when designing data strategies, designing notices and consents, and leveraging contractual protections in current and future partnerships.