Health data access & privacy
Health data access and privacy are critical components of a successful healthcare interaction. Providers of healthcare services are responsible for ensuring that patients have access to their data in a secure, private, timely and reliable manner. Stay up to date on the latest patient privacy discourse as it applies to HIPAA-covered entities and vendors.
Top Stories
-
News
05 Aug 2024
HHS settles HIPAA right of access case with EMS company
HHS imposed a $115K civil monetary penalty against American Medical Response over alleged HIPAA right of access failures. Continue Reading
By- Jill McKeon, Associate Editor
-
News
10 Jul 2024
State AGs urge consumers to use free credit monitoring from Change Healthcare
State attorneys general across the country are urging consumers to enroll in free credit monitoring and identity theft protection services in the wake of the Change Healthcare cyberattack. Continue Reading
By- Jill McKeon, Associate Editor
-
News
23 Apr 2024
HHS finalizes rule to strengthen reproductive health data privacy under HIPAA
The final rule aims to protect those seeking lawful reproductive healthcare by prohibiting the disclosure of PHI for the purposes of investigating patients. Continue Reading
By- Jill McKeon, Associate Editor
-
News
21 Feb 2024
Quest Diagnostics Settles Unlawful PHI Disposal Allegations For $5M
California Attorney General Rob Bonta announced a settlement with Quest Diagnostics following allegations of illegal disposal of PHI and hazardous waste. Continue Reading
By- Jill McKeon, Associate Editor
-
News
14 Feb 2024
Senator Calls on FTC, SEC to Crack Down on Location Data Misuse
US Senator Ron Wyden urged the FTC and the SEC to hold data broker Near Intelligence accountable for allegedly misusing reproductive health location data. Continue Reading
By- Jill McKeon, Associate Editor
-
News
16 Jan 2024
Novant Health Reaches $6.6M Settlement Over Improper PHI Disclosures
In August 2022, Novant Health notified 1.3 million patients that its use of Meta pixel code had potentially led to unauthorized PHI disclosures. Continue Reading
By- Jill McKeon, Associate Editor
-
News
21 Dec 2023
Lawmakers Push For Increased Patient Privacy Regarding Prescription Records
In a letter to HHS, lawmakers addressed patient privacy concerns following instances of pharmacies handing prescription records over to law enforcement without a warrant. Continue Reading
By- Jill McKeon, Associate Editor
-
News
06 Dec 2023
Joint Commission Launches Certification Program For Responsible Health Data Use
The voluntary Responsible Use of Health Data (RUHD) Certification program aims to ensure that participating hospitals have policies in place for the secondary use of data. Continue Reading
By- Jill McKeon, Associate Editor
-
News
01 Nov 2023
23andMe Data Security Event Raises Concerns for Minority Health Data
Senator Bill Cassidy raises concerns to 23andMe CEO after a recent data leak led to the exposure of PII of people of Jewish and Chinese heritage. Continue Reading
By- Jacqueline LaPointe, Director of Editorial
-
News
19 Oct 2023
OCR Publishes Resources On Telehealth Privacy, Security Risks
The two new resource documents aim to help providers explain telehealth privacy and security risks to patients. Continue Reading
By- Jill McKeon, Associate Editor
-
News
27 Sep 2023
Colorado AG Reaches Settlement With Skilled Nursing Center Over Data Breach
A skilled nursing facility in Colorado will pay a fine and take corrective actions for allegedly failing to protect patient and employee data during a 2021 data breach. Continue Reading
By- Jill McKeon, Associate Editor
-
News
18 Sep 2023
Indiana AG Sues IU Health For Violating Patient Privacy of 10-Year-Old Rape Victim
According to the lawsuit, IU Health failed to protect patient privacy and committed HIPAA violations after a doctor disclosed a 10-year-old rape victim’s abortion story to the press. Continue Reading
By- Jill McKeon, Associate Editor
-
News
01 Aug 2023
KLAS: AI, Market Consolidation Impact Patient Privacy Monitoring Vendor Trends
Patient privacy monitoring tools help healthcare organizations prevent and detect unauthorized access to sensitive patient data. Continue Reading
By- Jill McKeon, Associate Editor
-
News
23 Jun 2023
Senators Seek Answers From Amazon Over Collection of Patient Data
Signing up for Amazon Clinic comes with a catch – the company asks patients to sign away the “use and disclosure of protected health information.” Continue Reading
By- Jill McKeon, Associate Editor
-
News
20 Jun 2023
FTC Proposes Settlement With Genetic Testing Company Over Unsecured Health Data
The FTC charged that 1Health.io, also known as Vitagene, deceived customers about the deletion of their data, left health data unsecured, and changed its privacy policy retroactively without notifying consumers. Continue Reading
By- Jill McKeon, Associate Editor
-
News
30 May 2023
10 Senators Call On Google to Uphold Location, Health Data Privacy Practices
More than 10 months after Google pledged to delete sensitive location histories related to domestic violence shelters and abortion clinics, US Senators reminded the tech company to uphold its promise. Continue Reading
By- Jill McKeon, Associate Editor
-
News
12 Apr 2023
Insight Global Settles Class Action Lawsuit After Contact Tracing Breach
The plaintiff settled a class action lawsuit alleging inadequate cybersecurity measures were behind the Insight Global COVID-19 tracing data breach that impacted more than 76,000 patients. Continue Reading
By- Sarai Rodriguez
-
News
05 Apr 2023
Nearly All US Acute Care Hospitals Transfer Data to Third Parties, Study Finds
A new Health Affairs study shed light on the widespread presence of third-party tracking technologies on hospital websites. Continue Reading
By- Jill McKeon, Associate Editor
-
News
10 Mar 2023
Cerebral Notifies 3.1M Users of Healthcare Data Breach Stemming From Pixel Use
Online mental healthcare platform Cerebral notified more than 3.1 million users of a years-long healthcare data breach stemming from its use of tracking pixels. Continue Reading
By- Jill McKeon, Associate Editor
-
News
07 Mar 2023
FTC Proposes $7.8M Settlement With BetterHelp Over Improper Health Data Sharing
BetterHelp allegedly shared customer health data with third parties like Facebook and Snapchat for advertising purposes, the FTC said. Continue Reading
By- Jill McKeon, Associate Editor
-
News
06 Mar 2023
Senators Introduce UPHOLD Privacy Act to Prevent Use of Health Data For Advertising
If passed, the UPHOLD Privacy Act would prohibit companies from using personal health data for commercial advertising purposes and would prevent the sale of precise location data to and by data brokers. Continue Reading
By- Jill McKeon, Associate Editor
-
News
06 Mar 2023
FTC Warns Amazon About Improper Health Data Sharing Following One Medical Acquisition
Amazon finalized its acquisition of One Medical, sparking health data privacy concerns from the FTC. Continue Reading
By- Jill McKeon, Associate Editor
-
News
16 Feb 2023
Senators Introduce Bill to Bolster HIPAA Protections For Patients Seeking Reproductive Healthcare
The Secure Access for Essential Reproductive (SAFER) Health Act would strengthen patient privacy protections under HIPAA for individuals seeking reproductive healthcare. Continue Reading
By- Jill McKeon, Associate Editor
-
News
13 Feb 2023
Telehealth Companies Under Scrutiny For Allegedly Sharing Health Data With Third-Party Advertisers
Senators Amy Klobuchar (D-MN), Susan Collins (R-ME), Maria Cantwell (D-WA), and Cynthia Lummis (R-WY) called on three telehealth companies to answer questions about their health data privacy practices. Continue Reading
By- Jill McKeon, Associate Editor
-
News
23 Nov 2022
Analysis of Addiction Treatment mHealth Sites Highlights Data Privacy Risks
The Opioid Policy Institute and the Legal Action Center called for additional data privacy protections for addiction treatment data collected by mHealth sites. Continue Reading
By- Jill McKeon, Associate Editor
-
News
02 Nov 2022
WakeMed Faces Data Breach Lawsuit Over Meta Pixel Use
A proposed class action lawsuit alleged that WakeMed knowingly implemented tracking software on its website without patient consent. Continue Reading
By- Jill McKeon, Associate Editor
-
News
25 Oct 2022
CHIME Submits Comments to FTC on Proposed Data Security, Surveillance Rulemaking
CHIME expressed its support for the FTC’s commitment to enforcing data security while noting some key health data considerations. Continue Reading
By- Jill McKeon, Associate Editor
-
News
21 Oct 2022
VA Senator Expresses Health Data Privacy Concerns in Letter to Meta
Virginia Senator Mark R. Warner penned a letter to Meta CEO Mark Zuckerberg to address health data privacy concerns surrounding the company’s tracking pixel. Continue Reading
By- Jill McKeon, Associate Editor
-
News
03 Oct 2022
CA Governor Enacts 2 Laws Protecting Abortion Data Privacy
California Governor Gavin Newsom signed two bills into law that protect abortion data privacy and prevent California corporations from sharing abortion data with out-of-state entities. Continue Reading
By- Jill McKeon, Associate Editor
-
News
29 Sep 2022
GAO Calls on OCR to Educate Patients on Telehealth Security, Privacy Risks
GAO’s review of Medicare telehealth services delivered during the pandemic revealed some gaps in telehealth security and privacy communications. Continue Reading
By- Jill McKeon, Associate Editor
-
Feature
14 Sep 2022
How BCBS MA Combats DME, Telemedicine Fraud Schemes
With just a snippet of personal information, scammers are roping in providers and tricking seniors into elaborate DME and telemedicine fraud schemes. Continue Reading
By- Jill McKeon, Associate Editor
-
News
13 Sep 2022
Third-Party Tracking on Abortion Clinic Websites Sparks Data Privacy Concerns
Researchers analyzed abortion clinic websites and found third-party tracking tools on 99% of them, raising data privacy concerns. Continue Reading
By- Jill McKeon, Associate Editor
-
News
07 Sep 2022
CA State Legislature Passes Bill to Protect Abortion Data Privacy
The bill protects abortion data privacy by preventing California-based companies from turning over abortion-related data to out-of-state agencies. Continue Reading
By- Jill McKeon, Associate Editor
-
News
01 Sep 2022
Democratic Leaders Question Meta on Data Privacy Practices
House Democrats wrote a letter to Meta CEO Mark Zuckerberg seeking clarity on the company’s data privacy practices, especially relating to abortion information. Continue Reading
By- Jill McKeon, Associate Editor
-
Feature
22 Aug 2022
How Healthcare is Tackling Patient Privacy in a Post-Roe World
The Supreme Court’s decision in Dobbs v. Jackson Women’s Health Organization will require providers, regulators, and tech companies to rethink patient privacy. Continue Reading
By- Jill McKeon, Associate Editor
-
News
18 Aug 2022
Analytics Co. Sues FTC, Denies Allegations of Improper Data Privacy Practices
The Kochava Collective claimed that the FTC misunderstood its services, and denied allegations of improper data privacy practices. Continue Reading
By- Jill McKeon, Associate Editor
-
News
04 Aug 2022
Amazon’s Potential Acquisition of One Medical Sparks Health Data Privacy, Security Concerns
Senator Josh Hawley wrote a letter to the FTC asking it to investigate Amazon’s acquisition of One Medical, citing health data privacy and security concerns. Continue Reading
By- Jill McKeon, Associate Editor
-
News
26 Jul 2022
AMA: Patients Demand Health Data Privacy, Accountability, Transparency
Three-quarters of surveyed patients expressed health data privacy concerns, and nine out of ten patients said they wanted to see companies held accountable for health data use. Continue Reading
By- Jill McKeon, Associate Editor
-
News
13 Jul 2022
FTC to Enforce Against Illegal Location, Health Data Privacy Practices
In a blog post, the FTC committed to enforcing against improper consumer location and health data privacy practices. Continue Reading
By- Jill McKeon, Associate Editor
-
News
11 Jul 2022
House Panel Probes Health Apps to Protect Reproductive Health Data Privacy
The House Committee on Oversight and Reform announced plans to investigate data brokers and health apps over their reproductive health data privacy practices. Continue Reading
By- Jill McKeon, Associate Editor
-
News
11 Jul 2022
Biden’s Reproductive Health Executive Order Outlines Patient Privacy Protections
President Biden’s latest executive order on reproductive health addresses patient privacy concerns and aims to protect consumer data privacy. Continue Reading
By- Jill McKeon, Associate Editor
-
News
05 Jul 2022
Google Tackles Data Privacy, Plans to Delete Location History at Abortion Clinics
Google says it will delete location history when users visit abortion clinics, domestic violence shelters, and other facilities, signifying an increased focus on data privacy. Continue Reading
By- Jill McKeon, Associate Editor
-
News
05 Jul 2022
OCR Issues Patient Privacy, HIPAA Privacy Rule Guidance After Roe v. Wade Ruling
HHS OCR expressed its support for a patient’s right to safe and legal abortion and provided resources for protecting patient privacy in the wake of the Roe v. Wade ruling. Continue Reading
By- Jill McKeon, Associate Editor
-
News
30 Jun 2022
Senators Question Talkspace, BetterHelp On Patient Data Privacy Practices
In letters to Talkspace and BetterHelp, Senators pushed the mental health apps to provide clarity on their patient data privacy practices. Continue Reading
By- Jill McKeon, Associate Editor
-
News
28 Jun 2022
Senators Call on FTC to Investigate Apple, Google’s “Deceptive” Data Privacy Practices
Senators penned a letter to the FTC urging it to investigate Apple and Google for engaging in “unfair and deceptive” data privacy practices considering the Roe v. Wade ruling. Continue Reading
By- Jill McKeon, Associate Editor
-
News
22 Jun 2022
Meta Sued For Violating Patient Privacy, Scraping Health Data From Hospitals
Meta allegedly scraped health data from hundreds of hospital websites using its Meta Pixel tracker, sparking patient privacy concerns and a lawsuit. Continue Reading
By- Jill McKeon, Associate Editor
-
News
20 Jun 2022
Senators Aim to Ban Data Brokers From Selling Health Data With New Bill
If passed, the Health and Location Data Protection Act would ban data brokers from selling location and health data. Continue Reading
By- Jill McKeon, Associate Editor
-
News
01 Jun 2022
Potential Roe v. Wade Repeal Sparks Data Security, Patient Privacy Concerns
Prompted by the potential repeal of Roe v. Wade, Democratic lawmakers urged Google to stop collecting location information, citing data security and patient privacy concerns. Continue Reading
By- Jill McKeon, Associate Editor
-
News
11 May 2022
State-by-State Legal Inconsistencies Challenge Adolescent Patient Privacy
Legal inconstancies and information blocking rules make it difficult for providers to maintain adolescent patient privacy while adhering to ethical and professional guidelines. Continue Reading
By- Jill McKeon, Associate Editor
-
News
10 May 2022
New Framework Helps Healthcare Assess Privacy, Security of Digital Health Apps
Industry groups created a framework aimed at helping healthcare providers and consumers assess the security and privacy of digital health apps that fall outside HIPAA’s purview. Continue Reading
By- Jill McKeon, Associate Editor
-
News
19 Apr 2022
Employee Email Warnings Reduce EHR Snooping, Unauthorized PHI Access
Employees who received an email warning after unauthorized PHI access were far less likely to commit the same offense again, research published in JAMA found. Continue Reading
By- Jill McKeon, Associate Editor
-
Feature
12 Apr 2022
The Quest to Improve Security, Privacy of Third-Party Health Apps
WEDI and the Confidentiality Coalition proposed recommendations for improving the transparency, security, and privacy of third-party health apps with access to PHI. Continue Reading
By- Jill McKeon, Associate Editor
-
News
03 Mar 2022
Secondary Health Data Use Fails to Account for Clinical Ethics
Secondary health data use by big tech companies fails to account for clinical ethics, a JAMA Network viewpoints article argued. Continue Reading
By- Jill McKeon, Associate Editor
-
News
05 Jan 2022
FDA Provides Guidance on Remote Data Collection for Clinical Investigations
The FDA provided stakeholders with guidance surrounding the use of digital health technologies and remote data collection during clinical investigations. Continue Reading
By- Jill McKeon, Associate Editor
-
News
05 Nov 2021
Telehealth Security Concerns Surrounding Mental Healthcare Persist
Over a third of surveyed mental healthcare patients said that they have had a telehealth appointment that did not meet HIPAA standards. Continue Reading
By- Jill McKeon, Associate Editor
-
News
27 Oct 2021
Growing Number of States Enact New Genetic Data Privacy Laws
California, Arizona, and Utah are the latest states to enact genetic data privacy laws to hold genetic testing companies accountable for data protection. Continue Reading
By- Jill McKeon, Associate Editor
-
News
25 Oct 2021
Patient Privacy Concerns Emerge Over Facial Recognition Tech
Surveyed patients expressed concerns over data governance, usage, and patient privacy relating to facial recognition technology being used in medical research. Continue Reading
By- Jill McKeon, Associate Editor
-
News
29 Sep 2021
Guardian Patient Portal Access Impacts Adolescent Patient Privacy
A new study reveals that most parents and guardians have accessed their child’s patient portal, showing a need for adolescent patient privacy and confidentiality. Continue Reading
By- Jill McKeon, Associate Editor
-
News
16 Sep 2021
61M Fitbit, Apple Users Had Data Exposed in Wearable Device Data Breach
An independent cybersecurity researcher discovered a wearable device data breach that exposed the records of 61 million Apple and Fitbit users. Continue Reading
By- Jill McKeon, Associate Editor
-
News
10 Sep 2021
Employee Email Misuse Puts Patient PHI in Jeopardy in CA, FL
Two recent data breaches in Florida and California resulted from employee email misuse and jeopardized the PHI of tens of thousands of patients collectively. Continue Reading
By- Jill McKeon, Associate Editor
-
News
18 Aug 2021
COVID-19 Contact Tracing Surveys Subject of Health Data Breach
The health department is notifying residents of a data breach involving PHI. Continue Reading
By- Lisa Gentes-Hunt
-
News
27 Jul 2021
Patient Receipts With PHI Stolen, Recovered From Doctor's Office
Stolen office receipts at a California doctor's office contained some patients' PHI. Continue Reading
By- Lisa Gentes-Hunt
-
News
19 Jul 2021
Health Cyberattack Exposes PHI for 45K at Florida Heart Associates
A recent health cyberattack exposed the PHI of over 45,000 patients in Florida. Continue Reading
By- Lisa Gentes-Hunt
-
News
09 Jun 2021
Humana, Cotiviti Sued After Insider-Related Healthcare Data Breach
A patient affected by a healthcare data breach reported by Humana and its vendor Cotiviti has filed a lawsuit, claiming the business associates were negligent with PHI security. Continue Reading
By- Jessica Davis
-
News
08 Jun 2021
Judge Approves Nebraska Medicine Data Breach Lawsuit Settlement
A preliminary settlement has been reached in the data breach lawsuit against Nebraska Medicine, filed by some of the 219,000 patients affected by a 2020 ransomware and data theft incident. Continue Reading
By- Jessica Davis
-
News
20 May 2021
Universal Health Services Lawsuit: 2 Claims Dismissed, Citing Lack of Harm
A judge has dismissed two out of three claims made in a lawsuit against Universal Health Services, citing a lack of harm. One claim remains due to care delays during a 2020 ransomware attack. Continue Reading
By- Jessica Davis
-
News
10 May 2021
PA Health Dept Sued; Investigation Looms, After Contact Tracing Breach
The PA health dept. is being sued, after employees of its vendor Insight Global set up an unsecured channel to share COVID-19 contact tracing data, exposing the PHI of 72,000 individuals. Continue Reading
By- Jessica Davis
-
News
05 May 2021
MA AG Questions Retail Pharmacy Use of Patient COVID-19 Vaccine Data
In a letter sent to the leading US retail pharmacy chains, the Massachusetts AG calls into question the use of personal patient data from those who receive the COVID-19 vaccine. Continue Reading
By- Jessica Davis
-
News
12 Apr 2021
VA Health Records Protocols Probed, Following Sexual Harassment Reports
A group of Congressional members are probing protocols for health records access and other privacy concerns at the VA, amid a growing number of sexual harassment claims. Continue Reading
By- Jessica Davis
-
News
12 Mar 2021
41 States Settle with AMCA Over 2019 Data Breach Affecting 21M Patients
A multistate coalition of 41 state attorneys general settled with AMCA, requiring the collections vendor to bolster its security program after its massive patient data breach in 2019. Continue Reading
By- Jessica Davis
-
News
11 Mar 2021
Proposed Data Privacy Bill Creates Federal Data Standard, Empowers FTC
A newly proposed consumer data privacy bill aims to create a federal data standard and gives the FTC authority to enforce penalties against companies that fail to comply. Continue Reading
By- Jessica Davis
-
News
12 Feb 2021
CDT, eHI Share Proposed Consumer Health Data Privacy Framework
The proposed consumer health data privacy framework from eHI and CDT builds on a previous release and is designed to protect health information not covered under HIPAA regulations. Continue Reading
By- Jessica Davis
-
News
03 Feb 2021
US Fertility Sued Over Ransomware Attack, Health Data Exfiltration
US Fertility, a third-party support services vendor, has been sued by the patients impacted by a ransomware attack that resulted in the exfiltration of health data in September. Continue Reading
By- Jessica Davis
-
News
02 Feb 2021
Proposed Public Health Emergency Bill Targets COVID-19 Tech Privacy
A public health emergency bill proposed by a group of Democratic Congressional members takes aim at the privacy and security of much-needed COVID-19-tech. Continue Reading
By- Jessica Davis
-
News
29 Jan 2021
Fertility App Premom Sued Over Alleged Data Sharing with China
A lawsuit against Easy Healthcare claims its Premom fertility app routinely shared personal and geolocation with three marketing, data collections, and analytics firms tied to China. Continue Reading
By- Jessica Davis
-
News
27 Jan 2021
Philly DA Investigating Possible COVID-19 Vaccine Privacy Violation
The Philadelphia DA is investigating reports that the privacy policy of Philly Fighting COVID, tasked with vaccine distribution for the city, may have enabled the sale of private data to third parties. Continue Reading
By- Jessica Davis
-
News
04 Dec 2020
$4.2M Settlement Proposed in Kalispell Regional Breach Lawsuit
The 130,000 patients affected by a months-long data breach at Kalispell Regional Healthcare in 2019 reached a $4.2 million settlement with the Montana provider. Continue Reading
By- Jessica Davis
-
News
02 Dec 2020
Disclosed OpenClinic Flaws Pose Remote Code Execution, PHI Risk
Bishop Fox disclosed four serious vulnerabilities in the OpenClinic application, which pose serious risks to PHI, such as allowing a hacker to access patient protected health information. Continue Reading
By- Jessica Davis
-
News
09 Sep 2020
COVID-19 Sites Plagued with Third-Party Tracking, Posing Privacy Risk
A JAMA study found nearly all COVID-19 webpages designed to help individuals find information on the coronavirus contain code that transfers data to third parties, posing serious privacy risks. Continue Reading
By- Jessica Davis
-
News
03 Sep 2020
Patients Vastly Unaware of Insurers’ Access to Online Health Data
Reports show health insurers routinely scour public and private sources for consumer generated health data. But 90 percent of patients are unaware of the practice, a MITRE-Harris survey finds. Continue Reading
By- Jessica Davis
-
News
27 Aug 2020
CDT, eHI Unveil Draft Consumer Health Data Privacy Framework
Drafted in collaboration with providers, tech giants, and advocacy groups, the consumer health data privacy framework provides standards for health data not protected by HIPAA regulations. Continue Reading
By- Jessica Davis
-
News
14 Aug 2020
COVID-19 Home Monitoring Tools Pose Patient Privacy, Safety Risks
A study published in Nature Medicine reveals potential risks caused by the rapid adoption of home monitoring tools in light of COVID-19, including risks to patient privacy and safety. Continue Reading
By- Jessica Davis
-
News
07 Aug 2020
House Votes to Lift HHS Funding Ban on National Patient Identifier
The House of Representatives again voted to remove a ban on providing federal funds to HHS for the development of a national patient identifier, which the Senate rejected last year. Continue Reading
By- Jessica Davis
-
News
09 Jul 2020
RWJF, Manatt Share Consumer Health Data Privacy Framework
Several privacy groups like eHI and the Center for Democracy & Technology are also working on a consumer health data privacy framework that will pull from RWJF and Manatt insights. Continue Reading
By- Jessica Davis
-
News
03 Jun 2020
Sens. Propose Bill to Regulate Privacy of COVID-19 Contact Tracing Apps
Proposed bipartisan privacy legislation would give consumers control over the data collected by COVID-19 contract tracing apps, while establishing data restrictions and enforcement measures. Continue Reading
By- Jessica Davis
-
Answer
20 May 2020
COVID-19 Contact Tracing Apps Spotlight Privacy, Security Rights
As tech giants like Microsoft, Google, and Apple move to craft the APIs behind COVID-19 contact tracing apps, privacy advocates rush to ensure the protection of privacy and cybersecurity rights. Continue Reading
By- Jessica Davis
-
News
18 May 2020
Congressional Bills Target COVID-19 Contract Tracing App Privacy
Two separate bills from Republicans and Democrats aim to secure data generated by proposed COVID-19 contact tracing apps but differ on just how to provide transparency and ensure privacy. Continue Reading
By- Jessica Davis
-
News
12 May 2020
AMA Shares Privacy Principles for Non-HIPAA Covered Entities, Data
Designed to empower patients with more control over the data collected about them, new data privacy principles from AMA target health data collected by non-HIPAA covered entities. Continue Reading
By- Jessica Davis
-
News
11 May 2020
FTC Seeks Comment on Breach Notification Rule for Health Data
Stakeholders are being asked to provide comment on the FTC’s breach notification rule, which requires vendors not covered by HIPAA to inform consumers and the FTC of breaches with 60 days. Continue Reading
By- Jessica Davis
-
News
24 Apr 2020
Judge Approves $8.9M Banner Health Settlement Over 2016 Data Breach
The approved settlement stipulates Banner Health must improve its information security program and pay up to $8.9 million to the 3.7 million patients impacted by the June 2016 data breach. Continue Reading
By- Jessica Davis
-
News
20 Apr 2020
ACLU, Scientists Urge Privacy Focus for COVID-19 Tracing Technology
Following the Google and Apple announcement of their partnership on COVID-19 contact tracing technology, the ACLU and 200 scientists are highlighting potential privacy risks. Continue Reading
By- Jessica Davis
-
News
13 Apr 2020
Congress Presses Kushner on COVID-19 Health Data Surveillance Project
After reports showed White House Advisor Jared Kushner is creating a nationwide COVID-19 health data surveillance system, members of Congress are probing the effort due to privacy risks. Continue Reading
By- Jessica Davis
-
News
09 Apr 2020
Privacy Groups Urge Pence to Combat COVID-19 Fraud, Patient Harms
Thirty advocacy and research groups are urging Vice President Mike Pence and the White House Coronavirus Task Force to combat COVID-19 fraud attempts and other patient harms. Continue Reading
By- Jessica Davis
-
News
23 Mar 2020
Coronavirus Relief Package Needs Privacy Focus, Groups Tell Congress
Any Coronavirus relief packages drafted by Congress must center around patient privacy protections, and waivers must exclusively serve public health, civil-society groups urge. Continue Reading
By- Jessica Davis
-
News
19 Mar 2020
Sens. Flag Privacy, Security Concerns Over Google COVID-19 Screening Site
While the potential Google COVID-19 testing website is likely not covered by HIPAA, a group of Senators are concerned the Trump Administration hasn't addressed potential privacy threats. Continue Reading
By- Jessica Davis
-
News
13 Mar 2020
Senate GOP Bill Proposes Federal Privacy Standard Bill, Preempts States
After bipartisan talks fell through on a federal national privacy law, Sen. Jerry Moran released his take on national privacy standard bill that would preempt state laws. Continue Reading
By- Jessica Davis
-
News
04 Mar 2020
Sens. Reintroduce Privacy Law for Substance Use Disorder Treatment
The bipartisan senate proposal, Protecting Jessica Grubb’s Legacy Act, would modernize 42 CFR Part 2 privacy regulation to support substance use disorder treatment and improve care coordination. Continue Reading
By- Jessica Davis
-
News
14 Feb 2020
Senate Bill Would Create Federal Data Protection Agency
Following the lead of Democratic Reps. Anna Eshoo and Zoe Lofgren, Sen. Kristen Gillibrand unveiled privacy legislation that would establish a federal data protection agency. Continue Reading
By- Jessica Davis
-
News
13 Feb 2020
eHI, CDT Partner on Consumer Privacy Framework for Health Data
Following a push to address gaps in HIPAA, eHI and CDT are collaborating on the development of a consumer privacy framework for health data not protected under the regulation. Continue Reading
By- Jessica Davis
-
News
10 Feb 2020
Privacy Leaders: Congress, Not ONC, Holds Onus for Health App Privacy
In a blistering response to EHR giant Epic’s campaign to delay ONC's release of interoperability and information blocking rules, privacy leaders argue only Congress can change health app privacy. Continue Reading
By- Jessica Davis
-
News
03 Feb 2020
AHIP: CMS Price Transparency Proposal Poses Patient Privacy Risk
The Trump Administration’s plan to increase transparency around healthcare costs through an online app leveraging APIs could increase the risk to patient privacy, AHIP argues. Continue Reading
By- Jessica Davis
-
News
29 Jan 2020
Lawsuits Filed Against Health Quest, Tidelands After Data Breach Reports
In the past week, both Health Quest and Tidelands have been hit with lawsuits from patients impacted by two data breach incidents caused by separate ransomware and phishing attacks. Continue Reading
By- Jessica Davis