Self-Regulation Seen as Key to Trump’s HealthTech Initiative
The security of patient data shared with the Trump administration’s HealthTech Initiative will depend on participating companies’ existing controls, not regulation, attorneys at Orrick said Friday (see 2508040021).
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
The lawyers noted health data shared on the platform will go beyond the scope of the Health Insurance Portability and Accountability Act.
“Currently, the HealthTech Initiative lacks a formal enforcement mechanism,” they said. “As a result, the privacy and security of health data within the network will depend on the follow-through of participating entities, rather than on regulatory mandates.”
Patient trust will “depend on meaningful consent mechanisms and clear controls over which third parties can access and share information,” they added. “While the Framework does not override HIPAA or U.S. state privacy laws, the HealthTech Initiative will channel sensitive patient information beyond the highly regulated HIPAA environment and introduce an additional layer of compliance for participating entities, requiring careful coordination.”
Consumer advocates have raised privacy concerns about the White House's partnership plans with more than 60 companies, including Apple, Google, Samsung, Amazon, OpenAI, Anthropic, Oracle and Athenahealth (see 2507310067).