Mobile health apps must follow FTC breach notice rule after update
By 
Adrianne Appel2024-04-26T18:49:00
Mobile health applications and similar technologies must notify customers following a data breach or risk violating the Federal Trade Commission’s (FTC) health breach notification rule (HBNR), part of a broad update approved by the agency.
Many providers of direct health services, such as hospitals and doctors, are required to protect personal information under the Health Insurance Portability and Accountability Act (HIPAA). The HBNR pertains to health entities not beholden to HIPAA, such as certain vendors of health records, and requires them to notify individuals about data incidents.
The FTC has applied the HBNR to mobile health applications, as its recent enforcement actions against GoodRx and Easy Healthcare show.
Related articles
-
News BriefCerebral set to pay $7M over alleged patient data sharing
The Department of Justice and Federal Trade Commission proposed telehealth company Cerebral pay a total of $7 million for its alleged sharing of patient data and deceptive business practices in violation of the FTC Act.
-
News BriefState AGs tell UnitedHealth to do more in cyberattack aftermath
UnitedHealth Group’s response to a major cyberattack in February that wreaked havoc with medical payments nationwide has been “inadequate” and must be improved immediately, a group of 22 state attorneys general told the company.
-
News BriefWilliams-Sonoma fined record $3.2M over admitted ‘Made in USA’ order violations
Kitchen and home retail company Williams-Sonoma agreed to pay nearly $3.2 million for failing to comply with a 2020 administrative order by the Federal Trade Commission prohibiting its marketing of imported goods as made in the United States.
More from Regulatory Policy
-
News BriefFHFA chief orders Fannie and Freddie to consider crypto assets in mortgage assessments
In another sign of President Donald Trump’s focus on cryptocurrency, the head of the U.S. Federal Housing Finance Agency (FHFA) ordered Fannie Mae and Freddie Mac to create proposals to consider crypto assets for a single-family home mortgage.
-
ArticleEU, UK agree to reset rules on agrifoods, mergers and carbon trading as part of post-Brexit reset
Four years after Brexit, the U.K. and EU announced a “reset” that will ease barriers to importing and exporting food, drink, and agricultural produce. It may also harmonize rules around carbon emissions trading systems, simplifying compliance for multinational organizations that are large emitters, and enable more young people to gain ...
-
News BriefSenate confirms Olivia Trusty to FCC, handing Trump majority control
The U.S. Senate confirmed Olivia Trusty as commissioner for the Federal Communications Commission on Tuesday, marking a shift in agency staffing that gave commissioners nominated by President Donald Trump a majority of decision-making power. The move followed resignations of two commissioners earlier this month, each of whom had been nominated ...