Manatt Health October 5, 2023
Brandon Reilly, Amy E. MacDonald

Connecticut is the latest state to establish wide-ranging privacy protections for consumer health data and the first to weave such protections into a preexisting comprehensive consumer privacy law. The new law, S.B. 3, amends the Connecticut Data Privacy Act (CTDPA), which took effect July 1, to include obligations and restrictions on processing, sharing and selling consumer health data that is not otherwise regulated by the federal Health Insurance Portability and Accountability Act (HIPAA).

The amendments—which took effect October 1—include provisions similar to Washington’s My Health My Data Act (MHMD) and Nevada’s health data privacy bill, S.B. 370, both of which will take effect next year. Here are some highlights:

A more expansive definition of health data

The CTDPA already classifies...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Govt Agencies, Healthcare System, HIPAA, Patient / Consumer, Privacy / Security, Provider, Regulations, States
Related Articles:
Patient Privacy at Risk: The Hidden Flaws in Healthcare Data De-Identification (And How to Fix Them)
New privacy screen protectors launched to help practices stay HIPAA compliant
2024 Privacy, AI & Cybersecurity Year in Review
European Commission Withdraws Draft Rules on Technology Patents, AI Liability and Consumer Privacy
EU pulls back – for the moment – on privacy and genAI liability compliance regulations

Share This Article