If you are dealing with sensitive information of any kind (yes, this includes precise geolocation, ethnicity, sexual orientation, etc), but especially health information (and yes, reproductive health information too), do
Continue Reading Beware of Third-Party Trackers Like Meta Pixel. Ignoring Them Could Be Costly.Odia Kagan
HHS Issues Guidance in Light of Dobbs Decision
The U.S. Department of Health and Human Services (HHS) issued guidance on June 29 discussing privacy protections under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in the…
Continue Reading HHS Issues Guidance in Light of Dobbs DecisionHIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.
The Health Insurance Portability and Accountability Act of 1996 may be the most well-known privacy law in the United States, but it is also one of the most misunderstood.
Many…
Continue Reading HIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.Illinois’ Biometric Information Privacy Act Is Coming for Hospitals, Long-Term Care Providers
Attention hospitals, clinics, retirement homes and other long-term care providers! If you are collecting fingerprints to authenticate access to a medication dispensing system, then you need to be paying attention…
Continue Reading Illinois’ Biometric Information Privacy Act Is Coming for Hospitals, Long-Term Care Providers
CA Senate Proposes Expanded CCPA Carve-Outs Related to HIPAA, Biomedical Research
On the sixth day of CCPA the California Senate Health Committee gave to me … a HIPAA carve-out.
AB 713, reported favorably by the California Senate Health Committee, would expand…
Continue Reading CA Senate Proposes Expanded CCPA Carve-Outs Related to HIPAA, Biomedical Research
NY State Law Prohibits Ambulances and First Responders From Selling Patient Data
“New York Gov. Andrew Cuomo recently signed legislation that will effectively prohibit ambulance and first response service providers from disclosing or selling patient data to third parties for marketing purposes.
…
Continue Reading NY State Law Prohibits Ambulances and First Responders From Selling Patient Data
Dutch Hospital Fined Under GDPR for Medical Records Access Lapses
The Dutch Data Protection Authority has levied a fine of 460,000 euros on Haga Hospital for insufficient security following an investigation revealing that dozens of hospital staff had unnecessarily checked…
Continue Reading Dutch Hospital Fined Under GDPR for Medical Records Access Lapses
Dutch Data Protection Authority Issues Advisory On Medical Records Under GDPR
“The right to be forgotten does not apply in principle to medical records. However, as a patient, you may ask your health care provider to remove data from your medical…
Continue Reading Dutch Data Protection Authority Issues Advisory On Medical Records Under GDPR
Mental Health Apps Sharing Health Data Without Disclosure or Consent
A study shows that “92 percent of 36 mental health apps shared data with at least one third party — mostly services that help with marketing, advertising, or data analytics.”…
Continue Reading Mental Health Apps Sharing Health Data Without Disclosure or Consent
UK Data Protection Authority Advises Doctors on Patient Requests for Access to Health Information
Data subject access rights and your medical practice: The UK Information Commissioner’s Office (ICO) issues advice.
Medical practices have reported a significant rise in subject access requests (SARs) since the…
Continue Reading UK Data Protection Authority Advises Doctors on Patient Requests for Access to Health Information