Federal Trade Commission (FTC) News and Resources for Healthcare

Cerebral faces $7M FTC penalty over alleged health data security failures

April 17, 2024 - Under a proposed order from the Federal Trade Commission (FTC), online mental healthcare platform Cerebral will be restricted from disclosing consumers’ personal health information to third parties for advertising purposes and from misrepresenting its privacy and data security practices. Cerebral will also be required to provide customers...

FTC bans Monument from disclosing health data to third-party advertisers

April 16, 2024 by Jill McKeon

The Federal Trade Commission (FTC) banned Monument, an alcohol addiction treatment service, from disclosing its users’ personal health data to third-party advertisers, following allegations that...

Understanding the Nuances of the Healthcare Cybersecurity Regulatory Landscape

November 20, 2023 by Jill McKeon

Considering the complexity and magnitude of cyber threats facing the healthcare sector today, it stands to reason that the regulations that aim to protect patients and organizations from these threats must be equally intricate. These...

HHS, FTC Publish Warning Letters Sent to Healthcare Entities Over Third-Party Tracking Tech

September 07, 2023 by Jill McKeon

In a document that spans hundreds of pages, HHS and the Federal Trade Commission (FTC) published letters sent to 130 healthcare organizations regarding the security and privacy risks of third-party...

HHS, FTC Warn Hospitals and Telehealth Providers About Third-Party Tracking Tech

July 20, 2023 by Jill McKeon

The HHS Office for Civil Rights (OCR) and the Federal Trade Commission (FTC) sent a joint letter to 130 hospitals and telehealth providers to emphasize the security and privacy risks of third-party...

What is the Health Breach Notification Rule, Who Does It Apply To?

June 27, 2023 by Jill McKeon

When faced with a data breach that compromises protected health information (PHI), HIPAA-covered entities must comply with the HIPAA Breach Notification Rule, which sets strict guidelines on when and how to notify patients of a...

FTC Proposes Settlement With Genetic Testing Company Over Unsecured Health Data

June 20, 2023 by Jill McKeon

The Federal Trade Commission (FTC) reached a proposed settlement with 1Health.io, a genetic testing company, over its alleged security and privacy failures. The order requires the company to pay...

FTC Issues Health Breach Notification Rule Enforcement Action Against Fertility App

May 19, 2023 by Jill McKeon

The Federal Trade Commission (FTC) alleged that Easy Healthcare Corporation, the company that operates the Premom Ovulation Tracker app, violated the Health Breach Notification Rule by failing to...

How FTC Enforcement Actions Will Impact Telehealth Data Privacy

May 02, 2023 by Jill McKeon

The Federal Trade Commission (FTC) made its stance on health data privacy and security abundantly clear with two recent high-profile settlements against GoodRx and BetterHelp, setting the stage for future enforcement actions and heightened...

FTC Proposes $7.8M Settlement With BetterHelp Over Improper Health Data Sharing

March 07, 2023 by Jill McKeon

The Federal Trade Commission (FTC) proposed a $7.8 million settlement with online counseling service BetterHelp, resolving allegations of improper health data sharing practices. In addition, the...

FTC Warns Amazon About Improper Health Data Sharing Following One Medical Acquisition

March 06, 2023 by Jill McKeon

Following Amazon’s finalized acquisition of membership-based primary care practice One Medical, the Federal Trade Commission (FTC) sent a letter to Amazon reminding it of its obligations to...

DOJ Finalizes FTC Settlement With GoodRx Over Alleged Health Breach Notification Rule Violations

February 27, 2023 by Jill McKeon

The Department of Justice (DOJ) and the Federal Trade Commission (FTC) have officially resolved allegations against GoodRx surrounding violations of the FTC Act and the Health Breach Notification...

GoodRx Faces Lawsuit Over Alleged Improper Health Data Sharing Practices

February 09, 2023 by Jill McKeon

GoodRx, along with Meta, Google, and online advertising company Criteo, were hit with a proposed class action lawsuit containing allegations of improper health data sharing practices. GoodRx...

FTC Imposes $1.5M Penalty on GoodRx Over Failure to Report Healthcare Data Breach

February 02, 2023 by Jill McKeon

UPDATE 2/2/2023 - This article has been updated to include a statement from GoodRx. GoodRx agreed to pay a $1.5 million civil penalty for violating the Health Breach Notification Rule by failing...

FTC Sues Data Broker, Condemns Improper Data Privacy Practices

August 30, 2022 by Jill McKeon

The US Federal Trade Commission (FTC) sued data broker Kochava over its alleged sale of geolocation data, signifying the Commission’s commitment to cracking down on improper location and health...

Analytics Co. Sues FTC, Denies Allegations of Improper Data Privacy Practices

August 18, 2022 by Jill McKeon

Idaho-based Kochava, a data marketing and analytics company, filed a lawsuit against the US Federal Trade Commission (FTC) and denied the Commission's allegations of the company’s improper...

FTC to Enforce Against Illegal Location, Health Data Privacy Practices

July 13, 2022 by Jill McKeon

In a blog post, the US Federal Trade Commission (FTC) expressed its intentions to enforce against improper and illegal consumer location and health data privacy practices. Written by Kristen Cohen,...

More Articles