On March 18, the US Department of Health and Human Services’ (HHS’s) Office for Civil Rights (OCR) updated its guidance regarding the use of online tracking technologies. The American Hospital Association and others filed a...more
These are exciting times for the advancement of healthcare, whether you’re a hospital, health system, or healthcare technology company or a consumer that benefits from the proliferation of products and services provided. In...more
At a time marked by themes of “push” and “pull,” organizations across all sectors and jurisdictions are grappling with the pursuit of innovation within an increasingly complex regulatory framework. Over the next 12 months,...more
With the flurry of new consumer privacy laws enacted in states across the country, it is vital for healthcare companies that are not regulated under HIPAA to remain informed of this changing landscape in order to plan and...more
1/8/2024
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personal Information ,
PHI ,
Privacy Laws
The US Department of Health and Human Services, Office for Civil Rights (OCR), announced a settlement agreement on June 15, 2023 with not-for-profit community hospital Yakima Valley Memorial Hospital (Yakima) related to...more
The ever-evolving data privacy landscape continues to become more complex as new developments play out on the global stage. In the United States, a number of individual state laws have come into force, with more following in...more
With the lack of comprehensive federal consumer privacy legislation, states are charting an evolving course for businesses to follow when handling data and information about their customers. Led by California, several other...more
The Biden administration announced on January 30, 2023 that the COVID-19 Public Health Emergency (PHE) would officially end on May 11, 2023. The PHE declaration, which first was issued by the Secretary of the US Department of...more
Throughout the COVID-19 pandemic and related public health emergency (PHE), the US Department of Health and Human Services, Office for Civil Rights (OCR) issued four Notifications of Enforcement Discretion (referred to as...more
The US Department of Health and Human Services Office for Civil Rights (OCR) published guidance on the use of online tracking technologies by entities operating as covered entities and business associates under the Health...more
The last few years have thrown many surprises at businesses. Organizations across all sectors have faced inflation, global conflicts, supply chain challenges, a pandemic, and continually changing government policies. In 2023,...more
1/23/2023
/ Automotive Industry ,
Capital Markets ,
Cryptocurrency ,
Energy Sector ,
EU ,
False Claims Act (FCA) ,
FDIC ,
Financial Services Industry ,
FinTech ,
Food and Drug Administration (FDA) ,
Life Sciences ,
Tax Credits
The California Consumer Privacy Act (CCPA) exemptions for employee and business-to-business (B2B) personal information have not been extended, further complicating the privacy regulatory landscape for businesses in...more
World events, such as the COVID-19 pandemic, have accelerated the need for business operations to grow more digitally reliant and driven. As the global network grows and becomes more interconnected, privacy and...more
9/15/2022
/ Biometric Information ,
Computer Fraud and Abuse Act (CFAA) ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Personal Information Protection Law (PIPL) ,
Popular
Businesses operating in California should follow the development of the California Consumer Privacy Rights Act regulations because, unless they are significantly modified, they are likely to once more place California on the...more
For global healthcare companies that process personal information in Japan and/or import personal information from Japan, there are new requirements that must be considered in preparing data transfer or processing agreements,...more
Key amendments to the Singapore Personal Data Protection Act take into account technological advances, new business models, and global developments in data protection legislation, and will have an effect on healthcare...more
As we all try to keep up with the Metaverse and as the healthcare system wilts under a data deluge, the convergence of realities in a shared online space is not merely a chance for practitioners and patients to find each...more
7/5/2022
/ Application Programming Interface (APIs) ,
Blockchain ,
Cybersecurity ,
Data-Sharing ,
Electronic Medical Records ,
Food and Drug Administration (FDA) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Technology ,
Medical Devices ,
Metaverse ,
Popular ,
Telehealth
Utah has become the fourth state in the United States to pass a comprehensive consumer data privacy law—the most business-friendly state privacy law yet....more
On February 9, 2022, US Senators Bill Cassidy, M.D. (R-LA) and Tammy Baldwin (D-WI) introduced bipartisan legislation designed to modernize health privacy laws, including the Health Insurance Portability and Accountability...more
In the digital health market, new trends reveal future opportunities for innovators and shape healthcare investors’ strategies. Trends for 2022 include regulatory developments regarding digital health, telehealth expansion,...more
2/25/2022
/ Centers for Medicare & Medicaid Services (CMS) ,
Cybersecurity ,
Data Protection ,
Digital Health ,
Federal Trade Commission (FTC) ,
Food and Drug Administration (FDA) ,
Health Care Providers ,
Health Information Technologies ,
Life Sciences ,
Medical Devices ,
Pharmaceutical Industry ,
Popular ,
Regulatory Oversight ,
Telehealth ,
Telemedicine
As we start 2022, as part of our Spotlight series, we connect with Reece Hirsch, the co-head of Morgan Lewis’s privacy and cybersecurity practice, to discuss the recent policy statement issued by the US Federal Trade...more
1/7/2022
/ Breach Notification Rule ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Federal Trade Commission (FTC) ,
Health Care Providers ,
Health Information Technologies ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Mobile Health Apps ,
Policy Statement ,
Popular
According to recent guidance from the US Federal Trade Commission (FTC), providers of health apps and connected devices that collect consumers’ health information must comply with the FTC’s Health Breach Notification Rule, 16...more
China’s long-awaited Personal Information Protection Law (PIPL), after two rounds of draft versions, was finally passed by the Standing Committee of the National People's Congress on August 20, 2021, with the law effective...more
8/24/2021
/ China ,
Corporate Counsel ,
Cybersecurity ,
Data Controller ,
Data Processors ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Personal Information ,
Popular ,
Regulatory Reform
The European Commission has finally approved two decisions on 28 June granting the United Kingdom the cherished status of having “adequate” data protection laws so that transfers of personal data from the European Union are...more
A majority of California voters approved the California Privacy Rights Act of 2020 (CPRA) on November 3. The CPRA expands provisions of the California Consumer Privacy Act (CCPA), creates new consumer privacy rights,...more
11/11/2020
/ Ballot Measures ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Retention ,
Data Sellers ,
Data-Sharing ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
State and Local Government