A comprehensive privacy law taking effect Tuesday in Tennessee may appear business-friendly compared with similar measures in other states, but privacy lawyers note that it also contains some of the highest penalties for noncompliance. Companies could avoid a Tennessee crackdown by taking advantage of a novel safe harbor in the law, Mintz’s Cynthia Larose told Privacy Daily.
Clearly defined data rights are critical aspects of commercial transactions, especially when health care agreements include AI technology, Foley & Lardner attorneys blogged Wednesday.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.
Remote patient monitoring company Smart Meter warned the public of the privacy and security risks associated with connected medical devices, whose sensitive personal data could be routed to China and other adversarial countries.
The New York Child Data Protection Act (NYCDPA), which took effect Friday, is unique for many reasons, including its age-flag requirement and because New York lacks a comprehensive law covering users of all ages, experts said in interviews. However, like a good deal of privacy and online safety regulations, it may face legal challenges, said Jason Oliveri, data privacy partner at Hinshaw & Culbertson.
In a decision with nationwide implications, the U.S. District Court for Northern Texas on Wednesday vacated a majority of the Health Insurance Portability and Accountability Act's (HIPAA) Privacy Rule to Support Reproductive Health Care Privacy. A U.S. Department of Health and Human Services motion to dismiss the suit, case 24-00228, was also denied.
Objections to the proposed sale of genetic data in the 23andMe bankruptcy case continued piling up in court this week. They came from a range of affected parties, including states and customers of the biotechnology company.
Democrats on Wednesday reintroduced bicameral legislation that would set data-minimization standards for the collection and sharing of personal reproductive and sexual health data.
Nevada Gov. Joe Lombardo (R) vetoed Democrats’ genetic privacy bill (AB-589) Monday because he said it “unnecessarily duplicates existing federal requirements and is likely to create greater confusion around the handling of this data.”
SANTA CLARA, Calif. -- A majority of telehealth apps may be violating at least one privacy law or rule, the USENIX Privacy Engineering Practice and Respect (PEPR) conference heard Tuesday.