Benesch: FTC to more stringently enforce PHR breaches by apps, connected medical devices -
The FTC issued a policy statement to provide guidance to developers of health apps and connected medical devices and how they’re covered by the Health Breach Notification Rule. Benesch notes that technologies that don’t fall under HIPAA rules are still accountable when handling consumers’ personal health records (PHR). These include:
• Synched fitness or health devices and their respective apps; • Application programming interfaces (API);
• Consumer inputted information; and
• Other synched devices or apps.
Please see full publication below for more information.