Lexology July 2, 2024
Venable LLP

On May 30, 2024, the Federal Trade Commission (FTC or the Commission) published finalized amendments to the Health Breach Notification Rule (HBNR) that augment the prior rule’s scope and application. The updated final rule will become effective on July 29, 2024. The HBNR applies to vendors of personal health records (PHRs) and PHR-related entities that are not covered by the Health Insurance Portability and Accountability Act (HIPAA). The rule generally requires notification to individuals, the FTC, and, in certain cases, the media upon a breach of unsecured PHR identifiable health information.

The final rule follows recent FTC enforcement actions, including GoodRX, that addressed the use of digital advertising and analytics functionalities in the health space. The final rule will broaden,...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HIPAA, Provider, Technology
Related Articles:
7 of the biggest healthcare cyberattack and breach stories of 2024
‘Orgs need to be ready’: AI risks and rewards for cybersecurity in 2025
Healthcare cybersecurity in 2025: 3 things to know
Another House bill to aims to protect against hospital cyberattacks
Q&A: CybersolutionsMD CEO on preventing cyberattacks

Share This Article