"Privacy and Security" Posts

Portrait of Dr. Karen B. DeSalvo

An Opportunity for Sharing Information about Cyber Attacks

Dr. Karen B. DeSalvo | July 25, 2016

To better prevent attacks on health information technology, organizations need better visibility into what to expect and how to respond. Timely information on the nature of attacks is critical to that ability. To enable better dissemination of threat information, the U.S. Department of Health and Human Services’ (HHS) Office of the National Coordinator for Health Information Technology (ONC) and the Assistant Secretary for Preparedness and Response (ASPR) released two Funding Opportunity Announcements (FOAs) to build the capacity of an Information Sharing and Analysis Organization (ISAO).

Read Full Post.
Portrait of Dr. Karen B. DeSalvo

Examining Oversight of the Privacy & Security of Health Data Collected by Entities Not Regulated by HIPAA

Dr. Karen B. DeSalvo | July 19, 2016

Many of us now use wearables and other types of health information technology to help us manage our health and the health of our loved ones. These fitness trackers, their related social media sites where individuals share health information, and other technologies are changing the way we interact and control our own health. However, they did not exist when Congress originally enacted the Health Insurance Portability and Accountability Act (HIPAA) in 1996.

Read Full Post.
Portrait of Lucia Savage, J.D.

Educating Health App Developers about Regulatory Requirements

Lucia Savage, J.D. | June 21, 2016

These days it doesn’t require a degree in computer science to create a health app.  Developers of these apps can be technologists, clinicians, or patients using their knowledge and experience in health care. All can develop new health tools that range from tracking heart healthy behaviors to using electronic calendars to reminding us of health appointments. 

Read Full Post.
Portrait of Lucia Savage, J.D.

New at Health Datapalooza 2016: A Day Devoted to Privacy and Security

Lucia Savage, J.D. | April 28, 2016

For many years now, health IT developers, consumer advocates, and representatives from U.S and international governments have converged on Washington D.C. each spring for Health Datapalooza. This national conference brings together the companies, startups, academics, government agencies, and individual innovators working on the newest and most effective uses of health data to improve patient outcomes. Over the years, as interest in the event and the exciting opportunities to leverage health information has grown, so has interest in ensuring appropriate privacy and security safeguards and enabling consumer access to their health information — not just in the United States but worldwide.

Read Full Post.
Portrait of Thomas A. Mason, M.D.

Keeping Consumers in the Know: Help Us Update the Model Privacy Notice

Thomas A. Mason, M.D. | February 26, 2016

As ever more sophisticated retail health technology – like exercise trackers, wearable health technologies, or mobile applications that help individuals monitor various body measurements – comes into widespread use, it is increasingly important for consumers to be aware of companies’ privacy and security policies, including data sharing practices.

Read Full Post.