The U.S. Department of Health and Human Services, Office of Civil Rights (OCR) recently updated its controversial, year-old guidance document on the use of online tracking technologies by healthcare providers and other...more
4/29/2024
/ American Hospital Association ,
Business Associates ,
Department of Health and Human Services (HHS) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Hospitals ,
OCR ,
PHI ,
Regulatory Requirements ,
Technology ,
Tracking Systems ,
Web Tracking
On February 28, 2024, U.S. President Joe Biden issued Executive Order on Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern (EO), which authorizes...more
3/5/2024
/ Biden Administration ,
Cybersecurity ,
Data Brokers ,
Data Privacy ,
Department of Justice (DOJ) ,
Executive Orders ,
International Data Transfers ,
New Regulations ,
Personal Data ,
Popular ,
Proposed Regulation ,
Regulatory Reform
It has been a long time coming, but the other shoe has finally dropped. Ireland’s Data Protection Commission (DPC) fined Meta Platforms Ireland (parent of Facebook Ireland) €1.2 billion, the highest fine to date under the...more
5/24/2023
/ Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
EU ,
EU-US Privacy Shield ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
National Security ,
Personal Data ,
Privacy Laws ,
Social Media ,
Standard Contractual Clauses
A patient surfs a hospital system’s website and reads an article about depression and anxiety. The patient then searches the hospital’s website for mental health providers in the area. A few hours later, the patient logs into...more
4/4/2023
/ Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Department of Health and Human Services (HHS) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Marketing ,
New Guidance ,
OCR ,
Personal Information ,
PHI ,
Privacy Laws ,
Technology Sector ,
Web Tracking
In an opinion released on March 10, 2022, California Attorney General Rob Bonta addressed the applicability of the “right to know” under the California Consumer Privacy Act (CCPA) (pdf) to internal inferences that...more
4/18/2022
/ Algorithms ,
California Consumer Privacy Act (CCPA) ,
Data Breach Plans ,
Data Collection ,
Data Privacy ,
Disclosure Requirements ,
Inference ,
Personal Information ,
Privacy Notice Rule ,
Proprietary Information ,
Record Retention ,
Right To Know ,
Security Controls
Even as the world slowed in 2020, threat actors picked up their pace and used work-from-home infrastructure to spread malicious attacks. These bad actors also exploited trusted software vendors from Solar Winds to Microsoft,...more