Is GDPR Compliance Tougher Than HIPAA Compliance?

Portugal's supervisory authority Comisso Nacional de Proteco de Dados levied fines totaling 400,000 euros ($458,000) against a hospital, Centro Hospitalar Barreiro Montijo, for three violations of GDPR. That enforcement action - which was reportedly levied last July but only recently made public - apparently was Portugal's first since GDPR's compliance deadline on May 25, 2018.For U.S. healthcare entities, "this case demonstrates that there is significant overlap between HIPAA and GDPR, such as expectations for appropriate policies and documentation and expectations...