Lexology July 7, 2024
Hunton Andrews Kurth LLP

On June 20, 2024, the U.S. District Court for the Northern District of Texas Fort Worth Division ruled that guidance issued by the U.S. Department of Health and Human Services (“HHS”) relating to online tracking technologies exceeded HHS’ authority and ordered that it be vacated.

As previously reported, on December 1, 2022, HHS released a Bulletin on the obligations of HIPAA covered entities and business associates under the HIPAA Privacy, Security and Breach Notification Rules when using online tracking technologies. The Bulletin provided several hypotheticals that trigger HIPAA obligations, including when an online technology connects (1) an individual’s IP address with (2) a visit to a unauthenticated public webpage addressing specific health conditions or healthcare providers (the “Proscribed Combination”). The...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Apps, Digital Health, Govt Agencies, Health System / Hospital, HHS, HIPAA, Provider, Technology
Related Articles:
5 Key Health Care Moments During President Trump's First Month Back in Office
Trump and primary care: Best ways to Make America Health Again
HHS job cuts mount: 5 notes
President Trump Establishes Make America Healthy Again Commission: Implications for Life Science, Journal Publications and Continuing Healthcare Education
Opinion: HHS’ national health security division must be preserved

Share This Article