The average cost of a data breach has reached an all-time high of $4.45 million, according to IBM. Regulatory requirements, scrutiny, and enforcement have continued to expand. As we kick off 2024, here are the key action...more
The Department of Health and Human Services Office of Inspector General (HHS-OIG) has issued new general compliance program guidance, marking the first time the agency has released this type of “reference guide for the health...more
This report series examines quarterly trends in life sciences venture investment. Key findings for Q3 2023 include:
Life sciences VC deal value in Q3 2023 totaled $7.7 billion, representing an uptick from last quarter...more
This report series examines quarterly trends in life sciences venture investment. Key findings for Q2 2023 include:
• Life sciences VC deal value in Q2 2023 totaled $6.7 billion across 384 deals, representing a slight...more
Connecticut is the third state to adopt consumer health data privacy protections, following Washington’s My Health My Data Act (“MHMD”) and Nevada’s new consumer health data privacy law. It is the first state, however, to...more
The Nevada legislature recently passed Senate Bill 370 (“Nevada’s Consumer Health Data Privacy Law”) aiming to impose broad requirements on collecting, using, and selling consumer health information. Nevada joins Washington...more
The state of Washington recently enacted My Health My Data (“MHMD”), a game-changing new consumer privacy law focused on health data. MHMD establishes an expansive notice and consent regime for consumer health data with...more
These days it’s easy to identify people using technology and databases, and that’s a problem if you are trying to comply with HIPAA or even GDPR because a lot of sensitive data eventually needs to be de-identified in a proper...more
Healthcare companies track visitors to websites and mobile apps with third-party technologies like cookies and pixels, but that widespread practice now comes with steadily growing risk. The Federal Trade Commission is...more
This report series examines quarterly trends in life sciences venture investment. Key findings for Q4 2022 include:
• Deal value reached $7.1 billion in Q4 across 392 deals, bringing the 2022 annual total to $38.0 billion...more
The last year has seen a multijurisdictional regulatory push for increased cybersecurity standards for medical devices. The new approaches, issued by regulatory authorities in the United States (U.S.), the United Kingdom (UK)...more
This report series examines quarterly trends in life sciences venture investment. Key findings for Q3 2022 include:
• The industry generated $6.2 billion in deal value across 352 deals in Q3, exhibiting further quarterly...more
This report series examines quarterly trends in life sciences venture investment. Key findings for Q2 2022 include:
• The industry generated $8.8 billion in deal value across 362 deals in Q2, a material decline from Q1, as...more
In early April, the U.S. Department of Justice (DOJ) Civil Division’s Consumer Protection Branch (CPB) published its first-ever “Recent Highlights” report. The report provides background on the CPB, highlights from its recent...more
The Cybersecurity and Infrastructure Security Agency (“CISA”) released a “Sharing Cyber Event Information” Fact Sheet on April 7 that may preview its implementation of the new federal government cyber incident reporting...more
The Department of Justice (DOJ)’s Civil Cyber-Fraud Initiative, less than six months old, just resolved the first case against Comprehensive Health Services (CHS). There are two critical takeaways for all organizations that...more
To help your company get its United States (U.S.) state privacy compliance program on the right track in 2022, Orrick's Cyber' Privacy & Data Innovation Group has analyzed the differences between key topics for the California...more
3/15/2022
/ California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Security ,
Personal Information ,
State Privacy Laws
We expect many of the trends of 2021 in health data privacy to continue to pick up steam this year. See below for six noteworthy trends that life sciences and healthcare companies should continue to keep an eye on in 2022: ...more
The California Privacy Rights Act (CPRA) became law on December 16, 2020, and amended the California Consumer Privacy Act (CCPA). When the CPRA becomes fully operative on January 1, 2023, these important changes, among...more
Once reserved for routine doctors’ appointments, collecting health-related data has exploded as consumers start to monitor their own health metrics—everything from sleep and fertility to mental health and COVID-19—and...more
The Federal Trade Commission ("FTC") recently announced its intent to "vigorously" enforce its 2009 Health Breach Notification Rule (the "Rule") via a policy statement that sheds light on the Rule's scope. The policy...more
9/24/2021
/ Application Programming Interface (APIs) ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Federal Trade Commission (FTC) ,
FTC Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Mobile Apps ,
Mobile Health Apps ,
Personally Identifiable Information ,
Popular
Attacks on the life sciences and healthcare sectors (healthcare providers and health technology, medical device, pharmaceutical and biotechnology companies) increased significantly in the last year, including at the World...more