If you are a HIPAA-covered entity or business associate, you likely know that patient PHI may only be created, received, maintained, and transmitted as permitted by the HIPAA Security RuleContinue Reading Is Your Website HIPAA-Compliant?
If you are dealing with sensitive information of any kind (yes, this includes precise geolocation, ethnicity, sexual orientation, etc), but especially health information (and yes, reproductive health information too), do…Continue Reading Beware of Third-Party Trackers Like Meta Pixel. Ignoring Them Could Be Costly.
The U.S. Department of Health and Human Services (HHS) issued guidance on June 29 discussing privacy protections under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in the…Continue Reading HHS Issues Guidance in Light of Dobbs Decision
The Health Insurance Portability and Accountability Act of 1996 may be the most well-known privacy law in the United States, but it is also one of the most misunderstood.
Many…Continue Reading HIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.
On June 13th, U.S. Department of Health & Human Services (“HHS”) issued guidance advising that covered health care providers and health plans (covered entities) can provide audio-only telehealth services…Continue Reading New Telehealth Guidance Gives Thumbs-Up to Audio-Only Services
Ready or not, Roe v. Wade leak or not, health app developers are on notice. Those that collect sensitive personal information, such as reproductive data, must carefully navigate both federal…Continue Reading Roe or Not, Health Apps Must Protect Reproductive Data
Attention hospitals, clinics, retirement homes and other long-term care providers! If you are collecting fingerprints to authenticate access to a medication dispensing system, then you need to be paying attention…
Continue Reading Illinois’ Biometric Information Privacy Act Is Coming for Hospitals, Long-Term Care Providers
According to this article, 2021 has been a “particularly dire year” for health care data breaches. So, it may not seem shocking that a hacker gained access to the…
Continue Reading Planned Parenthood Los Angeles Data Breach Coincides with Spotlight on Roe v. Wade
I dive into the HIPAA weeds on a daily basis, and am sometimes asked about similarities and differences between HIPAA and the European Union’s General Data Protection Regulation (GDPR). Fox…
Continue Reading How Does HIPAA Compare To GDPR?
The Federal Trade Commission seems to be getting serious about unauthorized disclosures of data collected by health apps. In a Policy Statement issued on September 15, 2021, the FTC says…
Continue Reading HIPAA or Not, Health Apps Must Provide Breach Notification