It’s no secret that physicians are the interface between device makers and the patient, but their role in cybersecurity has been limited to date. However, Christian Dameff, assistant professor of biomedical informatics and computer science at the University of California San Diego, said its time to engage physicians once they are in practice and to include cybersecurity in medical school education, two efforts he said would go a long way toward improving medical device cybersecurity in the clinical setting.
In a span of a mere two years, the state of California passed two ballot initiatives dealing with privacy that promise to have an impact on digital health, the second of which created an office specifically for privacy enforcement matters. Eric Goldman, a professor of law at the Santa Clara (California) University School of Law, said on a recent webinar that the state attorney general’s office and the new California Privacy Protection Agency (CPPA) have overlapping jurisdiction, and as a consequence, companies doing business in California may find themselves at the mercy of not one, but two enforcement entities.
The latest global regulatory news, changes and updates affecting medical devices and technologies, including: Vaccine, diagnostic developers targeted by cyberattacks; Groups make case for extending sequester moratorium; More money needed for global vaccine effort; Russia extends COVID-19 drug, device program.
The latest global regulatory news, changes and updates affecting medical devices and technologies, including: NIST ramps up Zero Trust cybersecurity program; TGA sets date for mesh up-classification; IMDRF posts post-market study update; ANVISA updates list of non-regulated devices.
The latest global regulatory news, changes and updates affecting medical devices and technologies, including: FDA’s cybersecurity discussion paper emerges; CMS eyes MAC default for Allomap coverage; CMS floats draft coverage for CRC screening test.
There are some U.S. FDA work items that have been hampered primarily by the COVID-19 pandemic, and some that have just proven difficult to push across the finish line. The FDA’s October 2018 draft guidance for premarket considerations for cybersecurity in medical devices might fall into that latter category, but the FDA’s Suzanne Schwartz said the agency will reissue another draft version of that guidance, which will be available sometime in early 2021.
PARIS – For the past three years, French health care establishments, hospitals, radiotherapy centers and medical biology laboratories have had to report any security incidents affecting their IT systems. The French national agency for digital health care (ANS) has just released its latest annual report.
The U.S. government has charged two citizens of China with cybercrime in connection with purported hacking of research into vaccines for the SARS-CoV-2 virus, but more than one speaker on a July 22 webinar said scientists involved in basic life science research at universities fail to appreciate the need for cybersecurity, a problem they may take with them to the private sector.
U.S.-based device makers have been grappling with FDA cybersecurity requirements for some time, but now the European Union (EU) is working on cybersecurity regulations as well. Throw in privacy requirements by the state of California and the EU’s General Data Protection Regulation (GDPR), and device makers are facing an increasingly complicated world of enforcement and litigation.