Lexology July 2, 2024
Venable LLP

On May 30, 2024, the Federal Trade Commission (FTC or the Commission) published finalized amendments to the Health Breach Notification Rule (HBNR) that augment the prior rule’s scope and application. The updated final rule will become effective on July 29, 2024. The HBNR applies to vendors of personal health records (PHRs) and PHR-related entities that are not covered by the Health Insurance Portability and Accountability Act (HIPAA). The rule generally requires notification to individuals, the FTC, and, in certain cases, the media upon a breach of unsecured PHR identifiable health information.

The final rule follows recent FTC enforcement actions, including GoodRX, that addressed the use of digital advertising and analytics functionalities in the health space. The final rule will broaden,...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HIPAA, Provider, Technology
Related Articles:
EU action plan to make healthcare more resilient to cyber threats
The financial toll of the Change Healthcare hack: 7 numbers
The double-edged sword of AI and cybersecurity
Kristi Noem’s Bold Reset For CISA: A Return To Cybersecurity Duties
Slew of OCR activity underscores agency’s focus on security and AI

Share This Article