Health data: Who owns it and how to keep it safe


Monday 24 September 2018


Venue Royal Society of Medicine
1 Wimpole Street
Organised by

Telemedicine & eHealth Section


CPD - Applied for

Event Image

about this event

why is it important to Protect medical data?

This meeting helps delegates understand the current subject of why it is important to keep sensitive medical information safe, and the implications to patients, clinicians and providers if they do not follow, or adhere to certain security guidelines to safeguard sensitive personal data. 

Presentations from the UK’s famous National Cyber Security Centre (NCSC), Estonian government, and other security professionals will provide insightful knowledge on, health records, blockchain and a practical demonstration of the implications of poor security on medical devices.

Delegates will get the chance to discuss and debate the ownership of people’s medical data from different perspectives including the patient, pharmaceutical companies, and the NHS.

This is an important meeting and an area that all medical professionals need to be aware of, especially following the impact of recent hostile UK cyber attacks on medical data, such as Wannacry, and other malware on the NHS.

Also recent revelations of personal data usage by social media platforms and the newly implemented GDPR privacy legislation, are exploiting those who refuse or are turning a blind eye to cyber security. 


topics include: 

  • How to undertake good security practice to protect patient data and yourself
  • The implications of GDPR on patient and personal data


key speakers: 

  • Mr David Febrache, Technical Director, KPMG, UK

Mr Febrache has over 25 years of cyber and information security expertise. Prior to joining KPMG, Mr Febrache was the Head of Cyber and Space for the Ministry of Defence in the UK. He has supported Ministerial policy development, worked with key international allies, created and delivered the Defence Cyber Security Programme, and contributed to both UK and Scottish national cyber security strategies.


  • Mr Ken Munro, Partner, Pen Tests Partners, UK

Mr Munro is a security entrepreneur and industry maverick that has worked in InfoSec for over 15 years. After studying Applied Physics he tried his hand in the hospitality industry but soon discovered a talent for hacking. He went on to try his skills in the anti-virus industry before founding SecureTest - a penetration testing business that quickly established a reputation for delivering high spec services. NCC Group acquired SecureTest in 2007. Mr Munro went on to set up Pen Test Partners in 2010, which boasts some of the best ethical hackers in the business.


  • Professor Khaled el Emam, IQVia

Professor Emam is the founder of Privacy Analytics Inc (now under the IQVia conglomerate). As an entrepreneur, Professor Emam helped found five companies involved with data management and data analytics. He has worked in technical and management positions in academic and business settings in England, Scotland and Japan. He was also one of the first Privacy by Design Ambassadors recognised by the Ontario Information and Privacy Commissioner. 


* Following registration you will be contacted appropriately by email with; your booking confirmation, feedback survey and attendance certificate. For full details of the RSM privacy policy, click here

* The programme will be available shortly and is subject to change. 

join in the discussion online

Twitter Tweet: #RSMDataSafety
Follow us at @RoySocMed



9.00 am

Registration, tea and coffee

9.30 am

Welcome and introduction

Ms Caroline Rivett, Cyber Security Director, KPMG

9.35 am

The criminal impact of being insecure

Mr David Ferbrache, Technical Director, KPMG

10.00 am

The insecurity of the internet of things and medical devices

Professor Paul Dorey, Visiting Professor, Royal Holloway, University of London

10.25 am

Tea and coffee break

10.40 am

The impact of poor security in the critical national infrastructure

Ms Alison Dyer, Director, Urenco (previously GSK)

11.05 am

Practical demonstrations of poor security in the internet of things

Mr Ken Munro, Pen Test Partners

11.30 am

Sociotechnical impacts of security

Member of NCSC’s Sociotechnical Security Group

12.05 pm

Using blockchain for medical records in Estonian health system

Mr Ain Aaviksoo, Deputy Secretary General for E-services and Innovation, Ministry of Social Affairs, Government of Republic of Estonia

12.30 pm


1.15 pm

Data protection law post the General Data Protection Regulation (GDPR)

Mr Richard Cumbley

1.40 pm

Data protection in pharmaceutical research, development and sales

Ms Maria-Chiara Atzori, Head Data Privacy, Novartis International AG

2.05 pm

Data protection in the NHS

2.30 pm

Tea and coffee break

2.55 pm

Data ownership in biomedical research

Dr John Rumbold, Senior Research Fellow, School of Science and Technology, Nottingham Trent University

3.20 pm

Data rights in health and research

Dr Khaled el Imam, IQVIA

3.45 pm

The ethical view of data ownership

Dr Claudia Pagliari, Director of Global eHealth, Usher Institute of Population Health Sciences and Informatics, The University of Edinburgh

4.10 pm

Patient data ownership

4.35 pm

Panel discussion: Who owns patient data?

Dr Khaled el Imam, Dr Claudia Pagliari and Professor Barbara Pierscionek, School Associate Dean for Research, School of Science and Technology, Nottingham Trent University

5.15 pm

Ms Caroline Rivett

Closing remarks and close of meeting

register now for this event

register for this event

  • Early bird closes on Monday 27 August 2018
  • Registration closes on Tuesday 18 September 2018
register now


View rates for all membership types:

View rates

organiser's details

For information on this event, contact Kirsty HensonTel: 02072903918 Email: arrow