ABSTRACT: Digital health applications and assistance are disrupting the healthcare sector, however such applications are collecting an increasing quantity of health data to profile patients and provide targeted care and assistance. Health data is considered sensitive by EU data protection laws such as GDPR, which defines special security and data processing rules, and huge fines for non-compliance. For companies building health applications, such data protection laws represent a challenge due to the risks, costs, and complexity in ensuring compliance. This talk will provide an overview of these laws, how health application developers are coping with the compliance and how they typically process health data, together with some scandals and fines issued by EU data protection authorities to digital health companies. BIO: Jovan Stevovic, PhD, is the co-founder and CEO of Chino.io, a platform that makes health applications GDPR and HIPAA compliant “out of the box”. Jovan has over a decade of experience in the health IT industry. He completed his PhD at the University of Trento in 2014. His research explored technologies and protocols to allow health data to be shared in a legally-compliant and secure manner. This work directly led to setting up Chino.io. Currently Chino.io helps companies in most EU states and the US to innovate in digital health.