API

HIPAA or Not, Health Apps Must Provide Breach Notification

By Elizabeth G. Litten on September 20, 2021

The Federal Trade Commission seems to be getting serious about unauthorized disclosures of data collected by health apps. In a Policy Statement issued on September 15, 2021, the FTC says it will enforce its Health Breach Notification Rule, 16 C.F.R. Part 318 (the “Rule”):

This Policy Statement serves to clarify the scope of the Rule,

…

New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps

By Elizabeth G. Litten on September 4, 2020

A tricky issue for mobile health app developers since the Office for Civil Rights (OCR) released its first “Health App Use Scenarios & HIPAA” guidance back in 2016 has been deciphering whether the developer is a business associate if it offers its app on a consumer-facing basis as well as through covered entities (or their…

“I Have an App for That”: ONC’s Information Blocking Rule and HIPAA Access Rights

By Elizabeth G. Litten on August 17, 2020

A patient asks her doctor to send her test results to an app the patient has downloaded on her phone. The doctor worries that the app is not secure and that the patient might not understand the security risks. What should the doctor do?

Covered entity health care providers and their business associates likely need…

menu

HIPAA & Health Information Technology

API

HIPAA or Not, Health Apps Must Provide Breach Notification

New OCR Resource Adds Guidance on HIPAA and Direct-to-Consumer Health Apps

“I Have an App for That”: ONC’s Information Blocking Rule and HIPAA Access Rights

About Our Firm

Categories

Archives