Health data: Who owns it and how to keep it safe


Monday 24 September 2018


Venue Royal Society of Medicine
1 Wimpole Street
Organised by

Telemedicine & eHealth Section


6 CPD Points

Event Image

about this event

why is it important to Protect medical data?

This meeting helps delegates understand the current subject of why it is important to keep sensitive medical information safe, and the implications to patients, clinicians and providers if they do not follow, or adhere to certain security guidelines to safeguard sensitive personal data. 

Presentations from the UK’s famous National Cyber Security Centre (NCSC), Estonian government, and other security professionals will provide insightful knowledge on, health records, blockchain and a practical demonstration of the implications of poor security on medical devices.

Delegates will get the chance to discuss and debate the ownership of people’s medical data from different perspectives including the patient, pharmaceutical companies, and the NHS.

This is an important meeting and an area that all medical professionals need to be aware of, especially following the impact of recent hostile UK cyber attacks on medical data, such as Wannacry, and other malware on the NHS.

Also recent revelations of personal data usage by social media platforms and the newly implemented GDPR privacy legislation, are exploiting those who refuse or are turning a blind eye to cyber security. 


topics include: 

  • How to undertake good security practice to protect patient data and yourself
  • The implications of GDPR on patient and personal data


key speakers: 

  • Mr David Ferbrache, Technical Director, KPMG, UK

Mr Febrache has over 25 years of cyber and information security expertise. Prior to joining KPMG, Mr Febrache was the Head of Cyber and Space for the Ministry of Defence in the UK. He has supported Ministerial policy development, worked with key international allies, created and delivered the Defence Cyber Security Programme, and contributed to both UK and Scottish national cyber security strategies.


  • Mr Ken Munro, Partner, Pen Tests Partners, UK

Mr Munro is a security entrepreneur and industry maverick that has worked in InfoSec for over 15 years. After studying Applied Physics he tried his hand in the hospitality industry but soon discovered a talent for hacking. He went on to try his skills in the anti-virus industry before founding SecureTest - a penetration testing business that quickly established a reputation for delivering high spec services. NCC Group acquired SecureTest in 2007. Mr Munro went on to set up Pen Test Partners in 2010, which boasts some of the best ethical hackers in the business.


  • Mr Luk Arbuckle, Chief Methodologist, Privacy Analytics Inc, IQVia. And Co-Author of Anonymizing Health Data (O'Reilly)

Privacy Analytics, has nearly a decade of experience in the field of anonymization, and is co-author of Anonymizing Health Data: Case Studies and Methods to Get You Started (O’Reilly Media, 2013). Mr. Arbuckle was formerly Director of Technology Analysis at the Office of the Privacy Commissioner of Canada; Research Manager and Data Scientist at the Children’s hospital of Eastern Ontario (CHEO) Research Institute; and Director of Analytics at Privacy Analytics. 


* Following registration you will be contacted appropriately by email with; your booking confirmation, feedback survey and attendance certificate. For full details of the RSM privacy policy, click here

* The programme will be available shortly and is subject to change. 

join in the discussion online

Twitter Tweet: #RSMDataSafety
Follow us at @RoySocMed



9.00 am

Registration, tea and coffee

9.30 am

Welcome and introduction

Ms Caroline Rivett, Cyber Security Director, KPMG

9.35 am

The criminal impact of being insecure

Mr David Ferbrache, Technical Director, KPMG

9.55 am

The Internet of things and medical devices – who owns the security?

Professor Paul Dorey, Visiting Professor, Royal Holloway, University of London

10.15 am

Questions and answers

10.25 am

Tea and coffee break

10.50 am

The impact of poor security in the critical national infrastructure

Ms Alison Dyer, Chief Information Security Officer, URENCO

11.10 am

Practical demonstrations of poor security in the internet of things

Mr Ken Munro, Pen Test Partners

11.30 am

You shape security

Member of NCSC’s Sociotechnical Security Group

11.50 am

Estonian experience with blockchain-secured national health records

Dr Ain Aaviksoo, Digital Health Evangelist, former CIIO, Ministry of Social Affairs of Estonia

12.10 pm

Questions and answers

12.30 pm


1.25 pm

Data protection law post the General Data Protection Regulation (GDPR)

Mr Richard Cumbley, Partner and Mr Peter Church, Counsel, Linklaters LLP, London

1.45 pm

Data protection in pharmaceutical research, development and sales

Ms Marta Siemaszko, Head, Data Privacy Poland and Baltics, Novartis International AG

2.05 pm

Data protection in the NHS

Dr Jean Clark, Head of Governance and Ms Christine Jackson, Governance and Operations Manager and Data Protection Officer, NHS Norwich Clinical Commissioning Group

2.25 pm

Research presentation on data and digiceuticals: An ethical analysis of health data classification

Miss Lienkie Diedericks, King's College London

2.35 pm

Questions and answers

2.55 pm

Tea and coffee break

3.25 pm

Research presentation on medical devices

Taryn-Leigh Padmore, Royal Holloway, University of London

3.35 pm

Data ownership in biomedical research

Dr John Rumbold, Senior Research Fellow, School of Science and Technology, Nottingham Trent University

3.55 pm

Data rights in health and research

Mr Luk Arbuckle, Chief Methodologist, Privacy Analytics, an IQVIA Company

4.15 pm

Ethics and ownership of health data: A complex conundrum

Dr Claudia Pagliari, Senior Lecturer in Primary Care and eHealth and Director, Global eHealth Programme, Usher Institute for Population Health Sciences and Informatics, The University of Edinburgh

4.35 pm

Questions and answers

4.55 pm

Panel discussion: Who owns patient data?

Mr Luk Arbuckle, Dr Claudia Pagliari and Professor Barbara Pierscionek, School Associate Dean for Research, School of Science and Technology, Nottingham Trent University, Dr Jean Clark and Ms Christine Jackson

5.20 pm

Closing remarks

Ms Caroline Rivett

5.30 pm

Close of meeting

register for this event

  • Registration is now closed.
  • Places will be available on the day.


View rates for all membership types:

View rates

organiser's details

For information on this event, contact Kirsty HensonTel: 02072903918 Email: arrow