News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By Kyle Brasseur2023-07-21T16:15:00
The Federal Trade Commission (FTC) and Department of Health and Human Services sent letters to approximately 130 hospital systems and telehealth providers regarding potential patient privacy violations and security risks stemming from online tracking technologies.
The use of technology such as the Meta pixel code snippet or Google Analytics could “gather identifiable information about users, usually without their knowledge and in ways that are hard for users to avoid, as users interact with a website or mobile app,” said the agencies in a joint press release Thursday.
Unauthorized disclosure of an individual’s personal health information to third parties could violate the Health Insurance Portability and Accountability Act, while companies not covered by HIPAA still have a responsibility to protect against such disclosure under laws including the FTC Act and Health Breach Notification Rule, the agencies warned.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
2024-06-12T02:05:00Z By Jeff Dale
The Department of Justice and Federal Trade Commission proposed telehealth company Cerebral pay a total of $7 million for its alleged sharing of patient data and deceptive business practices in violation of the FTC Act.
2024-04-26T18:49:00Z By Adrianne Appel
Mobile health applications and similar technologies must notify customers following a data breach or risk violating the Federal Trade Commission’s health breach notification rule.
2023-11-01T22:10:00Z By Kyle Brasseur
Doctors’ Management Service agreed to pay $100,000 in settling the first ransomware agreement under the Health Insurance Portability and Accountability Act reached by the Department of Health and Human Services’ Office for Civil Rights.
2024-10-22T21:18:00Z By Adrianne Appel
Precision Toxicology has agreed to pay $27 million to settle allegations first brought by whistleblowers in three cases, that the company billed the federal government for unnecessary drug tests and paid kickbacks to doctors, the Department of Justice (DOJ) said.
2024-10-22T16:08:00Z By Aaron Nicodemus
Fund management company WisdomTree will pay $4 million to settle allegations by the Securities and Exchange Commission that it improperly invested in fossil fuel and tobacco companies in environmental, social and governance (ESG) funds despite promising to avoid them.
2024-10-18T18:10:00Z By Adrianne Appel
A Vietnamese alcohol company has agreed to pay $860,000 to settle allegations by the Office of Foreign Assets Control (OFAC) that its business with North Korea involved U.S. financial institutions.
Site powered by Webvision Cloud