News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Register for free
Receive the CW newsletter and access CPE webcasts.
- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By Adrianne Appel2024-04-26T18:49:00
Mobile health applications and similar technologies must notify customers following a data breach or risk violating the Federal Trade Commission’s (FTC) health breach notification rule (HBNR), part of a broad update approved by the agency.
Many providers of direct health services, such as hospitals and doctors, are required to protect personal information under the Health Insurance Portability and Accountability Act (HIPAA). The HBNR pertains to health entities not beholden to HIPAA, such as certain vendors of health records, and requires them to notify individuals about data incidents.
The FTC has applied the HBNR to mobile health applications, as its recent enforcement actions against GoodRx and Easy Healthcare show.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Register for free
Receive the CW newsletter and access CPE webcasts.
2024-06-12T02:05:00Z By Jeff Dale
The Department of Justice and Federal Trade Commission proposed telehealth company Cerebral pay a total of $7 million for its alleged sharing of patient data and deceptive business practices in violation of the FTC Act.
2024-04-30T20:18:00Z By Adrianne Appel
UnitedHealth Group’s response to a major cyberattack in February that wreaked havoc with medical payments nationwide has been “inadequate” and must be improved immediately, a group of 22 state attorneys general told the company.
2024-04-29T18:50:00Z By Jeff Dale
Kitchen and home retail company Williams-Sonoma agreed to pay nearly $3.2 million for failing to comply with a 2020 administrative order by the Federal Trade Commission prohibiting its marketing of imported goods as made in the United States.
2024-07-24T15:50:00Z By Aaron Nicodemus
Financial institutions holding Russian sovereign assets that have not reported them to the Treasury Department’s Office of Foreign Assets Control are now required to do so by Aug. 2.
2024-07-23T12:29:00Z By Ruth Prickett
Compliance officers should take note of proposed laws in the U.K. with the newly elected Labor government setting the legislative agenda in the King’s Speech last week, promising consultations on enhanced employee rights and a higher minimum wage.
2024-07-22T15:50:00Z By Aaron Nicodemus
Four federal banking regulators have joined the Treasury Department’s Financial Crimes Enforcement Network in issuing a notice of proposed rulemaking that would require financial institutions to conduct more thorough risk assessments on their anti-money laundering/countering the financing of terrorism programs.
Site powered by Webvision Cloud