The U.S. Department of Health and Human Services’ Office for Civil Rights recently announced more settlements associated with its HIPAA Right of Access Initiative.
Continue Reading OCR Continues to Settle HIPAA Right of Access Initiative Cases
Health Privacy
French Highest Court Rejects Suspension of Partnership with EU Service Provider Using AWS; Extends Application of the Schrems II Requirements
Posted on
France’s highest administrative court recently issued a summary judgment that rejected a request for the suspension of the partnership between the French Ministry of Health and Doctolib, a leading provider of online medical consultations in Europe, for the management of COVID-19 vaccination appointments. …
Continue Reading French Highest Court Rejects Suspension of Partnership with EU Service Provider Using AWS; Extends Application of the Schrems II Requirements
Fifth Circuit Court of Appeals Vacates MD Anderson HIPAA Penalty
Posted on
Posted in Health Privacy, U.S. Federal Law
The United States Court of Appeals for the Fifth Circuit recently vacated a 4.3 million dollar civil monetary penalty imposed by the Department of Health and Human Services’ Office for Civil Rights in 2017 against the University of Texas M.D. Anderson Cancer Center, holding that the penalty was “arbitrary, capricious, and otherwise unlawful.”…
Continue Reading Fifth Circuit Court of Appeals Vacates MD Anderson HIPAA Penalty
FTC Settles with Fertility-Tracking App Developer Regarding Health Data Disclosures
Posted on
On January 13, 2021, the FTC announced that fertility-app developer Flo Health, Inc. (“Flo”) agreed to a settlement over allegations that the company shared app users’ health information with third-party data analytics providers despite representations that Flo would keep such information private.…
Continue Reading FTC Settles with Fertility-Tracking App Developer Regarding Health Data Disclosures
OCR Settles with Orthopedic Clinic for $1.5 Million for Alleged HIPAA Noncompliance
Posted on
Posted in Health Privacy, Security Breach
On September 21, 2020, the U.S. Department of Health and Human Services Office for Civil Rights announced a $1.5 million settlement with Athens Orthopedic Clinic PA for alleged violations of the HIPAA Privacy and Security Rules.…
Continue Reading OCR Settles with Orthopedic Clinic for $1.5 Million for Alleged HIPAA Noncompliance
OCR Settles Five More Investigations Under HIPAA Right of Access Initiative
Posted on
On September 15, 2020, the U.S. Department of Health and Human Services’ Office for Civil Rights announced five more settlements under its HIPAA Right of Access Initiative.…
Continue Reading OCR Settles Five More Investigations Under HIPAA Right of Access Initiative
Businesses to Assist UK Test and Trace Effort
Posted on
Posted in Health Privacy, International
The UK Prime Minister, Boris Johnson, announced that restrictions relating to COVID-19 would be eased as of July 4, 2020, but that businesses will be asked to assist in the government’s efforts to employ contact tracing of infected individuals.…
Continue Reading Businesses to Assist UK Test and Trace Effort
ICO Releases COVID-19 Guidance for Re-Opening Workplaces
Posted on
Posted in Health Privacy, International
The UK Information Commissioner’s Office has released guidance that sets out the key principles of data protection that should be kept in mind as employers put measures in place to prevent the spread of COVID-19.…
Continue Reading ICO Releases COVID-19 Guidance for Re-Opening Workplaces
EDPB Releases Statement on the Processing of Personal Data in the Context of Reopening Borders Following the COVID-19 Outbreak
Posted on
On June 16, 2020, the European Data Protection Board released a statement on the processing of personal data in the context of reopening borders following the COVID-19 outbreak.…
Continue Reading EDPB Releases Statement on the Processing of Personal Data in the Context of Reopening Borders Following the COVID-19 Outbreak
California Senate Proposes Amendment to CCPA to Address De-Identification and Information Used for Research and Public Health Purposes
Posted on
Posted in Health Privacy, U.S. State Law
On June 11, 2020, the California Senate amended AB-713 to the California Consumer Privacy Act. The Senate’s recent amendments impose new contractual obligations on the use or sale of de-identified information and modify the exemption from the CCPA for information used for public health purposes. …
Continue Reading California Senate Proposes Amendment to CCPA to Address De-Identification and Information Used for Research and Public Health Purposes