Cerebral faces $7M FTC penalty over alleged health data security failures
- Under a proposed order from the Federal Trade Commission (FTC), online mental healthcare platform Cerebral will be restricted from disclosing consumers’ personal health information to third parties for advertising purposes and from misrepresenting its privacy and data security practices. Cerebral will also be required to provide customers...
More Articles
OCR Publishes Resources On Telehealth Privacy, Security Risks
The HHS Office for Civil Rights (OCR) unveiled two resource documents to help providers communicate telehealth privacy and security risks to patients. The documents, entitled “Educating Patients...How FTC Enforcement Actions Will Impact Telehealth Data Privacy
The Federal Trade Commission (FTC) made its stance on health data privacy and security abundantly clear with two recent high-profile settlements against GoodRx and BetterHelp, setting the stage for future enforcement actions and heightened...Pandemic-Era Telehealth Rules Set to Expire in May, Shifting HIPAA Compliance Obligations
The COVID-19 public health emergency (PHE) is set to end on May 11, marking the expiration of many pandemic-era support programs and lighter compliance obligations. As such, the HHS Office for Civil...Cerebral Notifies 3.1M Users of Healthcare Data Breach Stemming From Pixel Use
Telehealth platform Cerebral reported a healthcare data breach to HHS impacting more than 3.1 million individuals. Cerebral provides online therapy and medication management to millions of...Telehealth Companies Under Scrutiny For Allegedly Sharing Health Data With Third-Party Advertisers
Senators Amy Klobuchar (D-MN), Susan Collins (R-ME), Maria Cantwell (D-WA), and Cynthia Lummis (R-WY) sent letters to telehealth companies Cerebral, Monument, and WorkIt Health, addressing concerns...NIST Issues Final Guidance on RPM, Telehealth Security
The National Cybersecurity Center of Excellence (NCCoE), which is part of the National Institute of Standards and Technology (NIST), released final guidance on remote patient monitoring (RPM) and...81% of Telehealth Providers Are Concerned About Data Leakage
Telehealth proved to be a crucial and tool in healthcare at the height of the pandemic, but patients and providers still harbor concerns about data security and privacy. Over 90 percent of global...Telehealth Security Concerns Surrounding Mental Healthcare Persist
Telehealth enabled quality patient care during the height of the pandemic, but mental healthcare patients remain wary of security concerns, according to a survey conducted by Propeller Insights on...Cloud Security Alliance Releases Telehealth Risk Management Paper
A recent paper from the Cloud Security Alliance (CSA) provides guidance on HIPAA compliance, cybersecurity, and telehealth risk management. The paper offers best practices for data use, storage, and...The Telehealth Security Impact: Now and Beyond the COVID-19 Pandemic
The COVID-19 response resulted in a virtual care boom that’s expected to last well beyond the pandemic. As telehealth continues to support the shift in healthcare, ensuring a minimal security...HSCC Shares Telehealth Cybersecurity Assessment, Mitigation Guidance
The Healthcare and Public Health Sector Coordinating Council (HSCC) shared guidance directed at telehealth vendors and services providers, to support with the assessment and mitigation of potential...Report: COVID-19 Telehealth Risks and Best Practice Privacy, Security
Highlighting the risks posed by lifted restrictions on communication apps amid the COVID-19 pandemic, new research published in the Journal of the American Medical Informatics Association urged...Zoom Reaches Settlement with FTC Over Misleading Security Practices
The Federal Trade Commission reached a settlement with Zoom to resolve allegations that the company engaged in misleading security practices. The use of the videoconferencing platform...DHS CISA Shares Best Practice Ransomware Guide, Telework Toolkit
The Department of Homeland Security Cybersecurity and Infrastructure Security Agency recently released a pair of insights. The first outlines best practice guidance for ransomware and other threats,...FBI, CISA Alert of Surge in Vishing Cyberattacks on Remote Workers
Hackers are targeting employees working remotely amid the COVID-19 pandemic with a voice phishing, or “vishing,” campaign to obtain enterprise login credentials for mining...Sponsored by Jumio
Telehealth Adoption Requires Modern Identity Verification
This is the golden age of telehealth, with demand anticipated to rise 64.3% in 2020, according to a recent Frost & Sullivan report. It’s also been a magnet for online fraud and identity...Sponsored by Jumio
Breaking Down Telehealth Inclusivity Barriers for Older Adults
Older Americans are increasingly drawn to new technology, with smartphone adoption growing from 70% to 77% in two years, according to January 2020 AARP research. Nearly nine in 10 (86%) Americans ages...Sponsored by Jumio