As of January 1, security breach notifications must be provided to consumers when certain account information is compromised.
On September 27, California Governor Jerry Brown signed into law Senate Bill No. 46 (S.B....more
The state continues to lead the United States in the data privacy and security field by giving minors an Internet “delete” option and requiring disclosures about “do not track” practices.
In September 2013, California...more
FDA issues safety communication and draft guidance clarifying that manufacturers are responsible for addressing cybersecurity risks related to their medical devices....more
CMS and OIG issue similar proposed rules to modify the electronic health record exception and safe harbor.
On April 10, the Centers for Medicare & Medicaid Services (CMS) and the Office of Inspector General (OIG) of...more
Rule finalizes many provisions of the proposed rule, imposing new privacy and security obligations directly on business associates and modifying the definition of "breach" and the required factors to be considered in a risk...more
Enforcement action sends a strong message to the healthcare industry and reaffirms the need for security risk analysis and mobile-device security policies and procedures....more
Recent FTC and California Attorney General actions highlight the need to reassess privacy policies.
The Federal Trade Commission (FTC) recently ordered the data brokerage industry to provide information on the collection...more