Data Standards

EHI Provides Guidance for Protecting non-HIPAA-Covered Health Data

April 1, 2022 - Executives for Health Innovation (EHI) released a report with guidance for protecting non-HIPAA-covered health data held by health tech companies. In the report, EHI advocated for the adoption of industry-wide self-regulated standards for entities to follow as they await more thorough federal legislation. “Since the early 2000s, the Health...


More Articles

EHNAC, HITRUST Partner to Promote Security, Privacy Standards

by Jill McKeon

The Electronic Healthcare Network Accreditation Commission (EHNAC) and HITRUST announced a partnership to enhance security and privacy requirements under the Trusted Network Accreditation Program...

Security Automation, Collaboration Prove Critical For Healthcare

by Jill McKeon

Siloed security teams, slow threat response, and avoidable data breaches are some of the main concerns of IT leaders today, but security automation and collaboration could ease these struggles, a...

Patient Privacy Concerns Emerge Over Facial Recognition Tech

by Jill McKeon

A person’s face is their most publicly-identifiable feature, which explains why people may be wary of facial recognition technology’s healthcare functions in terms of patient privacy, data...

HITRUST Announces Risk Assessment Portfolio Expansion

by Jill McKeon

HITRUST announced an expanded assessment portfolio to help organizations ensure cyber resilience and assess risk management protocols. The organization also unveiled a new approach to assessments to...

Google, Microsoft Amassed the Most Vulnerabilities in H1 2021

by Jill McKeon

Google and Microsoft amassed the most vulnerabilities compared to other major tech companies in the first half of 2021, research from Atlas VPN revealed. During the first half of 2021, Google...

OMB, CISA Unveil Plans to Shift to Zero Trust Architecture

by Jill McKeon

The Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) are requesting public comment on newly proposed strategies and guidance that support the...

How Do New Patient Right of Access Policies Impact HIPAA?

by Jill McKeon

It’s been 25 years since HIPAA was signed into law, but new patient right of access policies have experts questioning the future of HIPAA and third-party data sharing, according to a recent op-ed...

Wisconsin Governor Signs Insurance Cybersecurity Act into Law

by Lisa Gentes-Hunt

Wisconsin Governor Tony Evers signed a new cybersecurity regulation into law, creating additional measures for insurance companies to protect the personally identifiable...

Email Hack Results in Health Data Breach in NJ Lab

by Lisa Gentes-Hunt

A New Jersey lab that performs specialized diagnostic testing is notifying patients of a data breach that involves their protected health information (PHI.)   A2Z Diagnostics, LLC,...

Patients Cite Privacy, Cybersecurity Fears with Vax Credentials

by Lisa Gentes-Hunt

American and British adults are fearful of using a digital, COVID-19 vaccination card and vaccine credentials due to privacy cybersecurity concerns, according...

How Can Congress Aid Healthcare Cybersecurity, Fight Ransomware?

by Lisa Gentes-Hunt

Healthcare is a prime target of ransomware and needs assistance to face digital thieves, according to several witnesses that testified before Congress this...

Connecticut’s Updated Cybersecurity Law Now Protects Patient Data 

by Lisa Gentes-Hunt

A newly signed Connecticut cybersecurity law will now allow for the protection of patient data and other private health information.  An Act Concerning Data Privacy...

OIG: Gaps in CMS ERM Puts Genomic Data Security at Risk 

by Lisa Gentes-Hunt

A newly released report is pointing out a flaw with CMS Enterprise Risk Management processes that leaves genomic data security liable.  The Department of Health and...

Report Draws Patient Privacy Concern with Prenatal Test

by Lisa Gentes-Hunt

A globally used, prenatal test is being used by a Chinese company to collect patient data, according to a new Reuters report.   The exclusive Reuters report,...

Proposed Data Privacy Bill Creates Federal Data Standard, Empowers FTC

by Jessica Davis

Rep. Suzan Delbene, D-Washington, introduced a national consumer data privacy bill, which would create a federal data privacy standard and supersede the patchwork of state laws. The proposed...

CDT, eHI Unveil Draft Consumer Health Data Privacy Framework

by Jessica Davis

The Center for Democracy and Technology (CDT) and eHealth Initiative and Foundation (eHI) released its draft consumer health data privacy framework designed to define data in need...