Lexology February 2, 2023
Holland & Knight LLP

Highlights

  • For the first time ever, the Federal Trade Commission (FTC) is seeking enforcement under the Health Breach Notification Rule, which requires certain businesses not covered by the Health Insurance Portability and Accountability Act (HIPAA) to notify their customers and others if there is a breach of unsecured, individually identifiable electronic health information.
  • Direct-to-consumer healthcare apps and product companies should carefully review privacy practices and evaluate whether online or public privacy notices accurately reflect current data sharing practices by the company, as well as update privacy notices to reflect the actual practices of the company so the company is not doing anything with data that has not been disclosed to consumers.

For the first time ever, the Federal...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Health IT, HIPAA, Patient / Consumer, Provider, Technology
Related Articles:
Addressing The HIPAA Blind Spot For Crisis Pregnancy Centers
6 Important Takeaways for HIPAA Covered Entities and Business Associates from 2024 NIST HHS OCR Conference
HHS settles 2 ransomware investigations as attacks rise
Safeguarding Health Information: Takeaways from HHS and NIST 2024 HIPAA Security Conference
White House OMB is reviewing proposed cybersecurity updates to HIPAA

Share This Article