The Federal Trade Commission issued a policy statement affirming that health apps and connected devices that collect or use consumers’ health information must comply with the Health Breach Notification Rule, which requires that they notify consumers and others when their health data is breached.
Read More
WEDI issued a statement on behalf of its Board Chair, Jay Eisenstock in response to the FTC’s regulatory review and request for public comment concerning the 2009 Health Breach Notification (HBN) Rule (85 Fed. Reg. 31085).
Next on the FTC’s regulatory review calendar: the Health Breach Notification Rule. In place since 2009, the Rule requires vendors of personal health records and related entities that aren’t covered by HIPAA to notify individuals, the FTC, and, in some cases…
FTC Submits Comment on Final Information Blocking Rule to the Department of Health & Human Services’ Office of the National Coordinator for Health Information Technology.
By David Harlow, JD MPH – The FTC has issued new guidance to businesses that collect and share consumer health information. This latest guidance comes about six months after the jointly-released interactive tool from FTC, HHS and FDA.
By David Harlow – We are awash in digital health data. And we are awash in multiple regulatory schemas designed to protect privacy, security and appropriate access to all this data. Some data is “traditional” health care data governed by the familiar patchwork of federal and state statutes and regulations (rhymes with “HIPAA”).
By Mike Semel – Don’t believe “We’re from the government and we are here to help you.” After a data breach in 2006 the FTC settled with ChoicePoint for $ 10 million and a 20-year monitored compliance program. Twenty-Years! In 2012 a company that had a HIPAA data breach was forced out of the state for two years by the Minnesota Attorney General.