HIPAA

Washington State Flag

Washington’s My Health, My Data Law: What You Need to Know

By Odia Kagan on May 4, 2023

Washington Governor Jay Inslee has signed the My Health, My Data Act into law.

Here are some key takeaways.

Approach to privacy: The people of Washington regard their privacy as…

Deidentification vs Anonymization: What Is Enough?

By Odia Kagan on November 28, 2022

For deidentification under the traditional laws like HIPAA, removal of identifiers qualifies.

That was a key facet of what I discussed last week on an anonymization panel during the IAPP…

A Class Action Lawsuit Claims a Health System Uses Meta Pixel on Its Website. What You Need to Know.

By Odia Kagan on August 4, 2022

Let’s review:

Health information is sensitive.
Sharing it with third parties for advertising is more sensitive.
Doing it behind a log-in where there is no expectation of such tracking?
You’re

HIPAA Covers a Lot Less Than People Think. But Beware of Other US Privacy Laws.

By Odia Kagan on June 21, 2022

HIPAA Infographic — HIPAA stands for Health Insurance Portability Accountability Act

The Health Insurance Portability and Accountability Act of 1996 may be the most well-known privacy law in the United States, but it is also one of the most misunderstood.

Many…

Illinois’ Biometric Information Privacy Act Is Coming for Hospitals, Long-Term Care Providers

By Odia Kagan on March 2, 2022

Hey hospitals, retirement homes and clinics! If you are using biometrics to control medication dispensing systems, then Illinois’ Biometric Information Privacy Act then (BIPA) has news for you.

The use…
Continue Reading Illinois’ Biometric Information Privacy Act Is Coming for Hospitals, Long-Term Care Providers

CCPA Amendments Address Deidentified Health Data

By Odia Kagan on October 9, 2020

California lawmakers recently passed legislation that amends the California Consumer Privacy Act.

“The most significant outcome of AB 713’s passage is that, pending California Gov. Gavin Newson’s signature, information that…
Continue Reading CCPA Amendments Address Deidentified Health Data

CA Senate Proposes Expanded CCPA Carve-Outs Related to HIPAA, Biomedical Research

By Odia Kagan on January 9, 2020

On the sixth day of CCPA the California Senate Health Committee gave to me … a HIPAA carve-out.

AB 713, reported favorably by the California Senate Health Committee, would expand…
Continue Reading CA Senate Proposes Expanded CCPA Carve-Outs Related to HIPAA, Biomedical Research

Mental Health Apps Sharing Health Data Without Disclosure or Consent

By Odia Kagan on April 27, 2019

A study shows that “92 percent of 36 mental health apps shared data with at least one third party — mostly services that help with marketing, advertising, or data analytics.”…
Continue Reading Mental Health Apps Sharing Health Data Without Disclosure or Consent

How the NIST Cybersecurity Framework Can Help With HIPAA Compliance: 3 Tips

By Mark G. McCreary on September 10, 2015

Last week we posted about A Brief Primer on the NIST Cybersecurity Framework. Our partner and HIPAA/HITECH expert Elizabeth Litten took the NIST Cybersecurity Framework and created a blog post for the HIPAA, HITECH and Health Information Technology Blog on how How the NIST Cybersecurity Framework Can Help With HIPAA Compliance: 3 Tips. For those facing any HIPAA-related issues, it is a worthwhile read.
Continue Reading How the NIST Cybersecurity Framework Can Help With HIPAA Compliance: 3 Tips

New NJ Data Security Standard More Stringent than HIPAA

By Elizabeth Litten on January 14, 2015

New Jersey Governor Chris Christie signed a bill (S.562) into law on January 9, 2015 that will impose a standard more stringent than HIPAA on health insurance carriers authorized (i.e.,…
Continue Reading New NJ Data Security Standard More Stringent than HIPAA

menu

Privacy Compliance & Data Security