News & Analysis as of

Data Protection Health Insurance Portability and Accountability Act (HIPAA)

Epstein Becker & Green

Consumer Privacy Update: What Organizations Need to Know About Impending State Privacy Laws Going into Effect in 2024 and 2025

Epstein Becker & Green on

Over the past several years, the number of states with comprehensive consumer data privacy laws has increased exponentially from just a handful—California, Colorado, Virginia, Connecticut, and Utah—to up to twenty by some...more

Jackson Lewis P.C.

Out of Sync: Mitigating Data Privacy and Security Risks Stemming From Data Syncing Across Devices

Jackson Lewis P.C. on

With organizations holding more and more data digitally, there is an increased need to ensure data remains accessible across the organization at any given time. To that end, many organizations use tools that synchronize the...more

Kelley Drye & Warren LLP

HIPAA Privacy Rule Revisions Address Reproductive Protected Health Information

The Department of Health and Human Services (the ​“HHS”) recently issued a final rule (the ​“Final Rule”) amending the Health Insurance Portability and Accountability Act (“HIPAA”) Privacy Rule. Among other things, the Final...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

Federal Trade Commission Hashes Out Aggressive Interpretation of Data Anonymization: What You Need to Know

The Federal Trade Commission (FTC) has a long-standing habit of creating legal obligations through blog posts. Recent communications from the FTC by way of its Office of Technology Blog evidence an aggressive expectation...more

Baker Botts L.L.P.

2024 HIPAA Action Items for Health Plans

Baker Botts L.L.P. on

In light of the changing legal landscape following Dobbs v. Jackson Women’s Health Organization, the Department of Health and Human Services (the “Department”) issued a final rule (link, and corresponding fact sheet link)...more

Locke Lord LLP

Data Minimization Under the CCPA

Locke Lord LLP on

The California Consumer Privacy Act of 2018 as initially adopted (or subsequently amended until 2020) did not contain the principle of data minimization. A requirement to minimize data collection was, however, added by the...more

Ballard Spahr LLP

The FTC's Revised Health Breach Notification Rule Is Now in Effect

Ballard Spahr LLP on

The Federal Trade Commission (FTC) continues to enforce and update its Health Breach Notification Rule (HBNR) amidst a fast-changing regulatory environment. A new rule, which took effect this week, expands the scope of the...more

Health Care Compliance Association (HCCA)

Healthcare Document Retention

Document retention is one of those persistent issues that comes with a great deal of complexity. As Michael Kearney, Head Solution Architect, Redgrave Data explains in this podcast, organizations have to deal with a dizzying...more

Orrick, Herrington & Sutcliffe LLP

FTC Health Breach Notification Rule Update: 6 Things You Should Know

The Federal Trade Commission (FTC) has updated its Health Breach Notification Rule that applies to non-HIPAA, consumer health data. Among the revisions, the FTC expanded or introduced key definitions and modified the...more

McGuireWoods LLP

Senior Living Alert: HIPAA Security Rule Compliance for Senior Living Facilities

McGuireWoods LLP on

The U.S. Cybersecurity & Infrastructure Security Agency has deemed healthcare entities “target rich, cyber poor,” meaning they have copious amounts of consumer and patient data but often do not have the cybersecurity means to...more

Health Care Compliance Association (HCCA)

[Webinar] Understanding HIPAA De-Identification: Exploring the Mysterious 18th Identifier - August 22nd, 12:00 pm - 1:30 pm CT

Learning Objectives: - Understand the methods for de-identification - Learn about the differences between anonymization, de-identification, and pseudonymization - Understand what “potential for re-identification”...more

Dinsmore & Shohl LLP

Data Breaches and Your Smart Watch: FTC Expands the Reach of the Health Breach Notification Rule

Dinsmore & Shohl LLP on

Effective July 29, 2024, the Federal Trade Commission (“FTC”) has issued a final rule that expands the scope of its existing Health Breach Notification Rule (“HBNR”) to include health and wellness applications (“apps”)...more

Jones Day

Vital Signs: Digital Health Law Update | Spring 2024

Jones Day on

Welcome to Vital Signs, a curated compilation of the latest legal and regulatory developments in digital health. Our lead article reports on recent developments in the U.S. Food and Drug Administration's ("FDA") regulatory...more

Jackson Lewis P.C.

Maryland Passes Comprehensive Data Privacy Law, Joining the Swelling State Ranks

Jackson Lewis P.C. on

Maryland’s governor recently signed the Maryland Online Data Privacy Act of 2024 (MODPA), making Maryland one of six states—along with Kentucky, Nebraska, New Hampshire, New Jersey, and Rhode Island—to pass a comprehensive...more

Mintz - Privacy & Cybersecurity Viewpoints

Rhode Island Enacts Comprehensive Privacy Law

Rhode Island Governor Daniel McKee allowed the Rhode Island Data Transparency and Privacy Protection Act (“RIDTPPA”) to pass on June 25, 2024 when he transmitted the bill back to the legislature without signature, making...more

Health Care Compliance Association (HCCA)

Privacy Briefs: July 2024

Pennsylvania-based Geisinger Health System said it experienced a breach impacting more than 1.27 million patients when a former employee of vendor Nuance Communications Inc., a Microsoft Corp. subsidiary, accessed patient...more

Quarles & Brady LLP

Deadline for Employers to Comply with Reproductive Health Care Privacy Changes – Dec. 22, 2024

Quarles & Brady LLP on

In May 2024, the Department of Health and Human Services issued a final rule amending HIPAA’s Privacy Rule to address reproductive health care privacy. The final rule was prompted by the Supreme Court’s 2022 ruling in Dobbs...more

Jackson Lewis P.C.

Nebraska Adds to the List of States That Have Enacted a Comprehensive Consumer Data Privacy Law

Jackson Lewis P.C. on

On April 17, 2024, Nebraska’s governor signed Legislative Bill 1074, which establishes a consumer data privacy law for the state. Nebraska’s law takes effect January 1, 2025. To Whom does the law apply? The law applies to...more

Faegre Drinker Biddle & Reath LLP

FTC Updates Health Breach Notification Rule

On July 1, 2024, the amendments to the Health Breach Notification Rule (HBNR) went into effect. First promulgated in 2009, the HBNR applies to vendors of personal health records — entities that are not covered by the Health...more

McDermott Will & Emery

No Longer Adrift in the Ocean State: Rhode Island Enacts Consumer Data Privacy Law

On June 25, 2024, the governor of Rhode Island transmitted without signature a comprehensive privacy bill, the Rhode Island Data Transparency and Privacy Protection Act (DTPPA), back to the state legislature, which is still...more

Akerman LLP - Health Law Rx

FTC’s Updated Health Breach Notification Rule Puts Health App Developers on Notice

The Federal Trade Commission’s (FTC) years-long effort to modernize its Health Breach Notification Rule (HBNR) in the midst of a swiftly changing technological landscape appears to be coming to an end. On Thursday, May 30,...more

Kelley Drye & Warren LLP

What Updates to the Health Breach Notification Rule Mean for Your Business

On July 29, 2024, the FTC’s revised Health Breach Notification Rule (HBNR) takes effect. The Rule requires vendors of personal health records (PHRs) and related entities not covered by HIPAA to notify individuals, the FTC,...more

Alston & Bird

New York State Department of Health Revises Proposed Hospital Cybersecurity Regulations

Alston & Bird on

In May 2024, the New York State Department of Health (“NYSDOH”) issued revisions to proposed regulations on hospital cybersecurity that it first released in November 2023. The proposed revised regulations are subject to...more

Cozen O'Connor

A New Line for Privacy in the Old Line State: Maryland Enacts a Comprehensive Data Privacy Law

Cozen O'Connor on

On May 9, 2024, Governor Wes Moore signed the Maryland Online Data Privacy Act (MODPA), making Maryland the seventeenth state to enact a comprehensive data privacy law. While similar in certain respects to most Virginia Model...more

Clark Hill PLC

HHS Bulletin on Online Tracking Technologies Declared Unlawful: What Covered Entities and Business Associates Need to Know About...

Clark Hill PLC on

Online tracking technologies are used by healthcare and hospital systems throughout the United States to analyze their website traffic, personalize content, and provide relevant information to website visitors, some of whom...more

1,097 Results
 / 
View per page
Page: of 44

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide