News & Analysis as of

Breach Notification Rule Data Privacy Privacy Laws

Wiley Rein LLP

What to Expect from New FTC Leadership on Digital Health Care

Wiley Rein LLP on

Digital health care companies have navigated a wave of new developments at the Federal Trade Commission (FTC) over the past few years. With new leadership in the Trump Administration, the FTC may be poised to change some of...more

Sands Anderson PC

Who’s Responsible When a Third-Party Vendor Is Compromised?

Sands Anderson PC on

Recently, we had the opportunity to advise some clients who worked with a third-party vendor that maintained custody of personal information pertaining to our clients’ respective end users.  The vendor suffered a data breach...more

Dickinson Wright

‘Security! Security!’ HHS Proposes Updates to HIPAA’s Security Rule

Dickinson Wright on

Can you remember healthcare security 20+ years ago? It seems like a different world from now. Believe it or not, the HIPAA Security Rule has barely changed since it was first enacted in 2003 and has been long overdue for a...more

Health Care Compliance Association (HCCA)

With Nod to OCR, Indiana Inks $350K Deal With Dental Firm Following Hack

Recent federal enforcement actions have brought home the lesson that there’s really no acceptable reason for denying a patient timely access to medical records. Last year, for example, the HHS Office for Civil Rights (OCR)...more

Jackson Lewis P.C.

2024 Wrap-Up of the Workplace Privacy, Data Management & Security Report

Jackson Lewis P.C. on

As the year comes to a close here are some of the highlights from the Workplace Privacy, Data Management & Security Report with our most popular topics and posts from 2024. Expanding State Privacy Laws- This year saw a...more

Health Care Compliance Association (HCCA)

Disclosure of Full Record to Employer Results in $35K Fine, Broad CAP; Echoes of 2017 HIV Case

It’s not immediately obvious why someone would want to disclose a health care test result as part of a job application. But one such request spurred a Pennsylvania entity to provide a lot more than that: it sent her whole...more

Ropes & Gray LLP

Key Privacy and Cybersecurity Watchdogs Make Their Naughty Lists

Ropes & Gray LLP on

Although 2024 saw several states enact comprehensive privacy legislation, another year is nearly gone, and we still do not have a comprehensive federal privacy law to resolve the rapidly evolving patchworks of state laws....more

Health Care Compliance Association (HCCA)

OCR: Rule Halts Disclosures Under ‘Presumption of Lawfulness,’ Shares Model Attestation Form

Attestations are at the heart of permissible disclosures under the HHS Office for Civil Rights’ (OCR) new reproductive health privacy rule—and OCR wants covered entities (CEs) and business associates (BA) to use them now. The...more

Sheppard Mullin Richter & Hampton LLP

Utah Breach Notice Law Amended, Effective May 1

Utah, among other privacy laws it has enacted or modified recently, has also modified its breach notification law. This follows last year’s changes to the law, which among other things codified the state’s Cyber Center....more

Perkins Coie

Security Breach Notification Chart - September 2023

Perkins Coie on

Perkins Coie's Privacy & Security practice maintains this comprehensive chart of state laws regarding security breach notification. The chart is for informational purposes only and is intended as an aid in understanding each...more

Mintz - Privacy & Cybersecurity Viewpoints

Texas Has Been Busy Ramping up Privacy Protections with New Comprehensive Data Privacy Law and Stricter Data Breach Notification...

Texas has joined the growing list of states enacting comprehensive consumer data privacy laws. On June 18, 2023, Governor Abbott (R) signed H.B.4, otherwise known as the Texas Data Privacy and Security Act (“TDPSA”). The...more

Sheppard Mullin Richter & Hampton LLP

FTC Looks to Update Health Breach Notification Rule, Targeting Digital Health Industry

The FTC recently proposed amendments to the Health Breach Notification Rule (HBNR). This is on trend with its aggressive interest over the last couple of years in health data not covered by HIPAA....more

Sheppard Mullin Richter & Hampton LLP

FTC and Other Regulators Continue to Signal Interest in Mobile Health Apps

The FTC is closing out 2022 with additional guidance for mobile health app developers signaling its continued interest in this industry. Since 2021, we have seen several steps from the agency demonstrating a focus on...more

Sheppard Mullin Richter & Hampton LLP

Pennsylvania Amends Breach Notification Law

Pennsylvania recently amended its data breach notification law to expand its definition of personal information and provide for a HIPAA exception. The process for providing notice in the event of a username/email breach has...more

Jackson Lewis P.C.

Don’t Forget About Other Data Laws When It Comes to Connecticut Privacy Requirements

Jackson Lewis P.C. on

While the federal government attempts to move forward with a more uniform national law, Connecticut joined California, Colorado, Utah, and Virginia in passing a comprehensive consumer privacy law....more

Sheppard Mullin Richter & Hampton LLP

FTC Continues to Signal Interest in Digital Health Industry, Publishing Updated Resources

The FTC recently published two new resources for complying with the Health Breach Notification Rule. The Rule requires vendors of personal health records (PHR), PHR-related entities and service providers to these entities, to...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - November 2nd - 5th, Nashville, TN

Dive into a broad spectrum of topics affecting healthcare organizations. Explore the latest laws, regulations, and developments to help you effectively manage your organization’s privacy compliance program. Our Academies are...more

Health Care Compliance Association (HCCA)

Report on Patient Privacy Volume 20, Number 6. Privacy Briefs: June 2020

Report on Patient Privacy 20, no. 6 (June 2020): A divided Indiana Court of Appeals has reinstated a patient’s claim that a hospital is vicariously liable for the actions of a medical assistant who accessed the patient’s...more

Jones Day

Jones Day Global Privacy & Cybersecurity Update | Vol. 22

Jones Day on

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - NIST Director Discusses Future Development of Cybersecurity Framework - On March 4, the director of the National Institute of Standards and Technology...more

BakerHostetler

California Sets Forth Further Legislation Imposing New Obligations on Companies

BakerHostetler on

Over the past few weeks, California Republican lawmakers have introduced a new package of legislation called “Your Data, Your Way,” which would expand and strengthen consumer privacy rights beyond what is required by the new...more

Hogan Lovells

Data protection and breach notification legislation strengthens across the Asia-Pacific region

Hogan Lovells on

In this hoganlovells.com Q&A, Hogan Lovells partner Mark Parsons discusses data privacy and cybersecurity trends and the evolution of laws and regulations in the Asia-Pacific region....more

Robinson+Cole Data Privacy + Security Insider

Canada’s amendments to PIPEDA now largely in force

Canada’s Personal Information Protection and Electronic Documents Act (“PIPEDA”) has been amended by The Digital Privacy Act (the “DPA”). DPA updates PIPEDA and modernizes Canadian data privacy and security law. DPA is now...more

Robinson+Cole Data Privacy + Security Insider

HHS issues fact sheet on HIPAA rules and resources

The Department of Health and Human Services (HHS) has released a fact sheet on the privacy, security, and breach notification rules of the Health Insurance Portability and Accountability Act (HIPAA). Designed to apply to...more

Proskauer on Privacy

Connecticut Updates its Data Security Laws, Imposing Stringent New Requirements

Proskauer on Privacy on

On June 30, 2015, the Governor of Connecticut signed into law S.B. 949, “An Act Improving Data Security and Agency Effectiveness." The new law updates Connecticut’s data security laws, including by adding a 90-day hard...more

24 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide