Summary
The UK's National Health Service (NHS) has confirmed that data stolen in a ransomware attack on Synnovis, a medical diagnostics service partnered with several major London hospitals, has been published online. The extent of the data breach and its impact on patients is being investigated. While Synnovis confirms no evidence of the database with patient test requests and results being published, the cybercriminal group behind the attack had threatened to publish data if not paid a ransom. The attack has disrupted services at hospitals including Guy's, St Thomas', and King's, but efforts are ongoing to manage the impact on patients and maintain urgent services.
Sign up for our newsletter
We like to keep our readers up to date on complex regulatory issues, the latest industry trends and updated guidelines to help you to solve a problem or make an informed decision.
Strategic Guide: Clinical Trial Data Protection Compliance in Australia
Are your global data protocols robust enough to withstand an audit by the Office of the Australian Information Commissioner (OAIC)? For international sponsors, Australia represents a premier destination for clinical research, but it also presents a sophisticated "privacy-by-design" regulatory environment. This analysis details the mandatory framework required to align cross-border operations with local statutory obligations and HREC expectations.
Scientific Research and the GDPR: Challenges and Opportunities in Secondary Data Use
Turning clinical trial data into tomorrow’s breakthroughs isn’t just science—it’s law. We explore GDPR roadblocks, secondary use challenges, and the UK’s bold new approach.
Data Protection Strategies for Phase III Clinical Trials
Phase III clinical trials require strict compliance with privacy and data protection laws across multiple jurisdictions, including GDPR obligations, local authorizations, and ethics committee oversight. The article outlines practical strategies such as the “funnel approach” to harmonize global frameworks, manage cross-border transfers, appoint Data Protection Officers, and ensure proper informed consent documentation. It also emphasizes the need for local representatives, jurisdiction-specific formalities, and standardized templates to maintain compliance and avoid delays in global studies.
FAQs
Our frequently questions