Does GDPR apply to US companies

New European data privacy and security legislation –General Data Protection Regulation (GDPR) – has been passed, and while this law is applicable in Europe, there are also GDPR requirements for US companies, including for organizations in the healthcare industry.

The new legislation, which has a go live date of May 25, 2018, requires a range of protections to be implemented to keep data of EU consumers secure and to safeguard their privacy. Healthcare groups are in a good position to comply with GDPR regulations since they are already obligated to comply with the HIPAA Privacy, Security and Breach Notification Rules. However, being HIPAA compliant is no guarantee that healthcare groups will not fall afoul of GDPR. GDPR requirements for US companies cover elements of privacy and security not required for HIPAA compliance.

Learn more about it: https://www.hipaaguide.net/does-gdpr-apply-to-us-companies/

More info here:
https://www.hipaaguide.net/hipaa-compliance-for-self-administered-group-health-plan/
https://www.hipaaguide.net/hipaa-violation-penalties-for-nurses/