This document discusses the importance of cybersecurity and data compliance, especially regarding health data and new EU regulations like GDPR. It notes that health data is sensitive and companies have a criminal responsibility to manage it properly. GDPR establishes high-level requirements for privacy, security, consent, and more, but companies must determine how to implement them. Doing so fully is risky, costly, and requires expertise in legal, technical, and security areas. Non-compliance could result in huge fines or loss of business. The document recommends considering patient data streams and profiles, as well as pursuing global compliance from the start to future-proof operations and ensure ability to work with any partners.