Healthcare technology and the cybersecurity debate

The Covid-19 pandemic, which has been affecting Brazil for more than two years, has brought countless losses and made the population’s routines change drastically. Among the most impacted sectors, health is certainly one of them, with emphasis on the need to migrate to digital platforms, especially to perform medical appointments – the so-called telemedicine.

Before the pandemic, it was unthinkable that certain appointments could be made online, away from the doctor’s office or the hospital, but that was not the only thing that has changed. Digital medical prescriptions, for example, increased by approximately 1,000% during the pandemic, according to studies by  health tech Memed.

The role of the cloud in this period also proved fundamental to support the necessary technology, but concerns about cybersecurity grew in the same proportion. At the same time, challenges around “digitizing health” are contributing to creating solutions at an unprecedented rate.

Among the benefits of this technology, it is worth highlighting the optimization of the IT infrastructure and the reduction of costs, as it uses digital resources and transforms data into significant insights. The speed of innovation is not left behind either, as the cloud allows the construction of prototypes and novel resources with great agility.

On the other hand, we should be aware of data confidentiality issues. The General Data Protection Law   (LGPD) , for example, reinforces the need for privacy as an individual right and a duty of all companies in Brazil. Thus, it is unthinkable that this sector is the target of hackers and invasions that could endanger such delicate information about patients. While cloud providers follow the highest standards of security, depending on the sensitivity of the stored data, the requirements must be tripled.

In addition to security, issues related to the regulation and cultural change of institutions should also be taken into  account.   Risk and responsibility management, well-defined objectives, and a good definition of the operating model are issues that cannot be left out.