Lexology July 27, 2023
Baker McKenzie

In brief

So far this year, three US states have passed laws with specific obligations related to consumer health privacy law: Washington, Connecticut, and Nevada. When it comes to California, the omnibus California Consumer Privacy Act (CCPA) applies also to the processing of health information. But, if the sectoral Confidentiality of Medical Information Act (CMIA) applies and is complied with, CMIA, and not the CCPA, applies. Most companies that do business in California are subject to CMIA, because the law applies to employers. Also, any business that offers software or hardware, including a mobile application, that enables a consumer to manage medical information must comply with CMIA.

Under CMIA, companies are prohibited from disclosing or using California residents’ medical information...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Healthcare System, Privacy / Security, Regulations, States
Related Articles:
Privacy concerns mount as Elon Musk's Grok takes on health data
DHS intros framework for AI safety and security, in healthcare and elsewhere
Why Modern Developers Must Master The Balance Of Privacy And Functionality In Mobile Apps
Navigating Security and Privacy Challenges in Healthcare IT: A Strategic Approach
Balancing Personalized Targeting with Protecting Consumer Privacy

Share This Article