Show navigation

Available in:

OnDemand Webinar
Audio & Reference Manual

Privacy and Security Issues of Health Related Mobile Applications - Is Yours Secure?

Learn the risks associated with mobile applications as they relate to health and wellness.

The FTC, courts, the media, independent researchers, and plaintiffs' class action attorneys are all focused intensely on data collection and use by mobile apps (as well as by websites, wearables, and IoT). In a seeming eternal game of gotcha, these parties will out companies for using poor privacy and security practices. Academic research is followed by media reports, which is followed by regulator inquiries, which is followed by class action lawsuits. Sometimes the order changes, but the adverse impact on companies is always the same. Health, pharma, medical, and wellness apps present an extremely attractive target for these outside forces because of the sensitivity of the data and the criticality of the services provided. This topic will address: (i) the precise nature of the problem, (ii) explain why compliance is so difficult in this area, and (iii) identify solutions, processes, and strategies for minimizing and managing risk, as well as protecting end-users, consumers, and customers. Most of the time will be spent on subsection (iii). Topics that will be covered include encryption, hashing, dynamic and static testing of apps, documentation, and efficient use of resources.

Runtime: 89 minutes
Purchase Options

More Program Information

Why Lorman?

Over 32 years and 1.4 million customers worth of experience providing continuing education. Our passion is providing you world-class training to help you succeed in business and as a professional.

Agenda

Mobile Health and Wellness Apps - Where They Sit

  • Legally - HIPAA, FTC, Specific State Laws
  • Technically-Mobile Apps, Websites, IoT, Wearables

The Threat to Business

  • Independent Researchers, Regulators, Media, Plaintiffs' Class Action Attorneys
  • Why Compliance Is Hard: Increased Modularity; Role of Third-Party Code and SDKs; Device-Side Intermediation of Third-Party Services; and Technical Data Collection
  • Internal Silos; Limited Resources; Professional Focus of Security and Legal Has Blind Spots

How to Address the Risk

  • Defining What We Are Looking for: PHI, PII, Device IDs, Ad IDs, Geolocation, et al.
  • Dynamic Testing: Analyzing Network Traffic for Third Parties and Data of Interest
  • Static Testing: Analyzing Source Code for Relevant System Calls
  • Testing for Effectiveness of Encryption
  • Testing for Secure Coding Practices
  • Documenting Compliance as a Process
  • Documenting Testing and Audit Results
  • How to Plan Testing to Efficiently Utilize Resources and Limited Budgets
  • Being on Guard for Third-Party Attacks Mounting Re-Identification Attacks on Shared Data
Purchase Options

More Program Information

Why Lorman?

Over 32 years and 1.4 million customers worth of experience providing continuing education. Our passion is providing you world-class training to help you succeed in business and as a professional.

Credits

OnDemand Webinar

This course was last revised on November 30, 2016.

Call 1-866-352-9540 for further credit information.

This program does NOT qualify, nor meet the National Standard for NASBA accreditation.

Audio & Reference Manual

  • Arizona CLE 1.5
     
  • CA MCLE 1.5
     
  • GA CLE 1.5
     
  • HI CLE 1.5
     
  • IL CLE 1.5
     
  • ME CLE 1.5
     
  • MO CLE 1.8
     
  • MT CLE 1.5
     
  • NJ CLE 1.8
     
  • NV CLE 1.5
     
  • VT CLE 1.5
     
  • WA CLE 1.5
     
  • WV MCLE 1.8
     
The CLE Code is ONLY a requirement when applying for CLE Credit in California (for participatory credit), Kansas, New Jersey or New York. Other states do not need to supply the CLE Code to apply for CLE credit.

This program does NOT qualify, nor meet the National Standard for NASBA accreditation.

Purchase Options

More Program Information

Why Lorman?

Over 32 years and 1.4 million customers worth of experience providing continuing education. Our passion is providing you world-class training to help you succeed in business and as a professional.

Faculty

Steven Roosa

Steven Roosa

Holland & Knight LLP

  • Partner and co-chair of the Tech and Telecom Industry Sector Group at Holland & Knight LLP, New York, NY
  • Practice focuses on advising companies on a wide spectrum of technology and legal issues pertaining to privacy and data security
  • Day-to-day practice includes helping companies better understand the privacy profile of their websites and mobile apps and translating that knowledge into actionable risk management options
  • Fellow Emeritus and the Center for Information Technology Policy at Princeton University
  • Co-wrote Trust Darknet—Control and Compromise in the Internet’s Certificate Authority Trust Model, IEEE 2013, Journal of Internet Computing http://ieeexplore.ieee.org/document/6451080/
  • Graduate, Cornell University and Rutgers School of Law
  • Can be contacted at 212.513.3544 or [email protected]
Purchase Options

More Program Information

Why Lorman?

Over 32 years and 1.4 million customers worth of experience providing continuing education. Our passion is providing you world-class training to help you succeed in business and as a professional.

All of your training, right here at Lorman.

Pay once and get a full year of unlimited training in any format, any time!

  • Live Webinars
  • OnDemand Webinars
  • MP3 Downloads
  • Course Manuals
  • Audio Recordings*
  • Executive Reports
  • White Papers and Articles
  • Sponsored Live Webinars

Additional benefits include:

  • State Specific Credit Tracker
  • Members Only Newsletter
  • All-Access Pass Course Concierge

* For audio recordings you only pay shipping

Questions? Call 877-296-2169 to speak with a real person.

Sign Up Today
With This Course

Access to all training products for one year
$699/year

Unlimited Lorman Training

With the All-Access Pass there is no guessing what you will need for your yearly training budget. $699 will cover all of your training needs for an entire year!

Easy Registrations

Once you purchase your All-Access Pass you will never be any further than one-click away from attending any Lorman training course.

Invest in Yourself

You haven't gotten to where you are professionally by luck alone; it's taken a lot of hard work and training. Invest in yourself with the All-Access Pass.

Product ID: 397764
Published 2016
Purchase Options

Available in Multiple Formats

Purchase this course and learn on your schedule!