JD Supra September 27, 2021
Highlights
- The Federal Trade Commission (FTC) adopted a policy statement on Sept. 15, 2021, emphasizing that developers of digital health apps, connected devices and other health products have obligations under the Health Breach Notification Rule.
- The rule requires certain businesses not covered by the Health Insurance Portability and Accountability Act (HIPAA) to notify their customers and others if there is a breach of unsecured, individually identifiable electronic health information.
- The FTC policy statement signals a need for a renewed focus on the personal health record (PHR) breach rules and may lead to future enforcement.
The Federal Trade Commission (FTC) adopted a policy statement on Sept. 15, 2021,...