Privacy Law, HIPAA, and Data Protection

1.5 substantive credits

What does it take to comply with privacy laws?

In this course, we’ll look at the practical aspects of navigating the complex landscape of privacy requirements. Better understanding privacy laws and data protection will enable you to protect your organization and the constituents that depend on your organization to safeguard their personal information. First, we will examine the historical context that drove the creation of laws, best practices, and other standards for protecting personal information. We will also consider where in the U.S. privacy laws exist and which sectors remain unregulated. Next, we will focus on the federal health privacy law, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) – and what it takes to comply with it. How do you know the scope of the requirements? And once you know HIPAA applies, how do you actually put measures in place to ensure compliance? We’ll explore the notion that one cannot have privacy without strong security and examine various models that promote the security of personal information. We’ll look closely at breach notification laws – one of the most significant drivers of change in organizations – and discuss strategies for the improvement of data protection overall. Lastly, we will look at international law, state law, the unique and important role of the Federal Trade Commission in protecting privacy. Most importantly, we get practical – we will discuss real-world, practical approaches to how compliance professionals can navigate the complex landscape of privacy requirements to best protect their organizations.


Profile


Lauren Steinfeld

Lecturer in Law

Lauren B. Steinfeld serves as Chief Privacy Officer for Penn Medicine and Senior Advisor for Privacy for the University of Pennsylvania. In this position, Ms. Steinfeld leads and oversees the HIPAA compliance program and other privacy initiatives for Penn’s six hospitals, over 250 physician practices, and the School of Medicine research program. She works on institution-wide training, policy development, and systems monitoring initiatives as well as evaluating individual strategic partnerships with data sharing elements. Ms. Steinfeld previously served as Senior Advisor for Privacy and Compliance and as Chief Privacy Officer focusing on University-specific issues. In those positions, she created, for the first time in higher education, an infrastructure for an institution-wide privacy program. Ms. Steinfeld developed and implemented policies, procedures, risk assessment models, risk mitigation strategies and other initiatives to protect the privacy and security of personal information. She addressed issues in cloud computing, social media, electronic information, courseware, location data, internal information systems risk assessments, FERPA compliance, HIPAA compliance, and incident response. Ms. Steinfeld also helped create Penn’s infrastructure for its institutional compliance program, with components including a telephone and web-based hotline, non-retaliation, policy coordination and awareness, self-assessments in functional compliance areas, and reporting to senior leadership on priority compliance activities. Ms. Steinfeld is now teaching a Privacy Law course, with Professor Anita Allen at Penn Law. She will teach again this Spring with Professor Christopher Yoo. Prior to her work at Penn, Ms. Steinfeld worked at the Office of Management and Budget as the Associate Chief Counselor for Privacy. At OMB, Ms. Steinfeld helped the Clinton Administration develop the HIPAA medical privacy regulations. She was also responsible for a wide range of other privacy issues, including financial and online privacy, identity theft, genetic information, cybersecurity, government information systems, and tax data confidentiality.. Before arriving at OMB, Ms. Steinfeld served as Attorney Advisor to Federal Trade Commissioner Mozelle Thompson. As an advisor, she was involved in the legal and policy aspects of some of the first Internet- and privacy-related cases brought by the FTC. Ms. Steinfeld received her B.A. from the University of Pennsylvania, graduating Phi Beta Kappa and magna cum laude. She received her J.D. in 1992 from New York University School of Law.


Your Instructor


University of Pennsylvania Carey Law School
University of Pennsylvania Carey Law School

Course Curriculum


  Privacy Law, HIPAA, and Data Protection
Available in days
days after you enroll

Frequently Asked Questions


When does the course start and finish?
The course starts now and never ends! It is a completely self-paced online course - you decide when you start and when you finish.
How long do I have access to the course?
How does lifetime access sound? After enrolling, you have unlimited access to this course for as long as you like - across any and all devices you own.
What if I am unhappy with the course?
We would never want you to be unhappy! If you are unsatisfied with your purchase, contact us in the first 30 days and we will give you a full refund.

Get started now!