Can the US Meet International Privacy Standards in an Era of Personal Health Records, Consumer Scores and Watch Lists? UNSW's Cyberspace Law and Policy.

Slides:

Advertisements

Similar presentations

Privacy and the Internet Professor Peter P. Swire Ohio State University National Press Foundation February 14, 2001.

Advertisements

The Role of the Federal Government in Privacy Policy Professor Peter P. Swire The Ohio State University Center for American Progress The Privacy Symposium,

Electronic commerce EDI (8 decade) – base of EC – “Netscape” – propose SSL (Secure Sockets Layer) 1995 – “Amazon.com” “eBay.com” 1998 – DSL (Digital.

Navigating Compliance Requirements DCM 6.2 Regs and Codes linford & co llp.

NCVHS: Privacy and Confidentiality Leslie P. Francis, Ph.D., J.D. Distinguished Professor of Law and Philosophy Alfred C. Emery Professor of Law University.

Health Insurance Portability and Accountability Act (HIPAA)

GOVERNMENT REGULATION OF INSURANCE

Privacy and the Right to Know Grayson Barber, Esq. Grayson Barber, LLC.

John Palatiello, MAPPS Executive Director Kevin Pomfret, Centre for Spatial Law and Policy presentation to NGAC December 7, Washington, DC.

© South-Western Educational Publishing Chapter 29 Consumer Protection  Laws to Protect Consumers  Agencies to Protect Consumers.

CSE2500 Systems Security and Privacy Week 11 Privacy Law in Australia (after 2000)

Insights on the Legal Landscape for Data Privacy in Higher Education Rodney Petersen, J.D. Government Relations Officer and Security Task Force Coordinator.

Security of Computerized Medical Information: Threats from Authorized Users James G. Anderson, Ph.D. Purdue University.

Disclaimer This Presentation is provided “as is” without any express or implied warranty. This Presentation is for educational purposes only and does not.

The Marketing Environment. The External Environment Demographics Social Change Social Change Economic Conditions Economic Conditions Political & Legal.

Definition and Types of Banks

A European View of Privacy Protection John Woulds Director of Operations UK Data Protection Commissioner National Conference on Privacy, Technology & Criminal.

1 The importance of credit bureau and need of legal framework for it LITHUANIA.

“Privacy Implications of RFID Technology in Health Care Settings” Marc Rotenberg President EPIC Dept. of Health & Human Services Washington, DC 11 January.

NIGERIA’S FINANCIAL SYSTEM STRATEGY 2020 PERSPECTIVES ON BUILDING AN INTERNATIONAL FINANCIAL CENTRE: EXPERIENCE OF SINGAPORE.

Banks and the Privacy of Medical Information 8 th National HIPAA Summit March 8, 2004 Joy Pritts, JD Health Policy Institute Georgetown University

> > > > Business Law Appendix A. Legal System & Administrative Agencies The judiciary is the court system, the brand of government responsible for settling.

The comparison of financial institutions, markets & instruments in China & US and the possibility to set up a deposit insurance system in China Fang Ji.

Name of presenter(s) or subtitle Privacy laws and their impact on research David W. Stark MRIA B.C. Chapter November 2, 2005.

How Recent Government Initiatives Will Impact IT on Your Campus, October 10, 2000 Preconference Seminar 13P - How Recent Government Initiatives Will Impact.

Chapter #7. Section #7.1 Describe your rights as set forth in the Consumer Bill of Rights. Describe the protections provided by major federal consumer.

“Privacy and the Future of Justice Statistics” Peter P. Swire Chief Counselor for Privacy OMB/OIRA National Conf.on Privacy, Technology & Criminal Justice.

Understanding the Fair and Accurate Credit Transaction Act, the “Red Flag” Regulations, and their impact on Health Care Providers Raising a “Red Flag”

Independent agencies of the United States federal government are those agencies that exist outside of the federal executive departments, are not headed.

Component 4: Introduction to Information and Computer Science Unit 2: Internet and the World Wide Web 1 Component 4/Unit 2Health IT Workforce Curriculum.

Student Confidentiality: The FERPA/HIPAA Facts AISD Policy Student Records AISD Procedure AP. 11.

7-Oct-15 Threat on personal data Let the user be aware Privacy and protection.

Assistance for the Asking By Your Name. Why do we need Assistance ? Since everyone that owns a business is not always completely business savvy in every.

Financial Services Privacy - the interaction of the privacy and financial services regulatory systems Chris Connolly Financial Services Consumer Policy.

European Commission, Technical Assistance Information Exchange Unit (TAIEX), DG Enlargement in co-operation with The Bulgarian Chamber of Commerce and.

Protecting privacy: Regulation and its unintended consequences for survey research Dr. Dan Nunan Henley Business School, University of Reading

IAPP KnowledgeNet Los Angeles “Thinking Outside the Cookie Jar” The Second Wave of Global Privacy Protection: Why This Year Is Different Peter Swire, Senior.

© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 8 Privacy Law and HIPAA.

Dr. Christian Schmies 28. June 2013 The Common European Sales Law - Some Policy Questions -

Robert Guerra Director, CryptoRights Foundation Implementing Privacy Implementing Privacy: Rules of the Game for Developers Mac-Crypto Conference on Macintosh.

Politics and Reform Problems In Washington. What is the spoils system (patronage)?  Putting people in office that are friends or political supporters.

Federal Trade Commission U.S. Rules on Privacy and Data Security Organization for International Investment General Counsel Conference October 16, 2009.

FACTA Medical Chicago Regional Training Conference Indianapolis, Indiana June 14, 2006 David Lafleur, Policy Analyst-Compliance Federal Deposit Insurance.

Direct from Washington: The Impact of Federal Legislation on Direct & Interactive Marketers.

© 2008, Consumer Data Industry Association Congressional Privacy Policy Panel Stuart K. Pratt.

Chapter 6: The United States Begins Section 2: George Washington Sets the Course.

Prepared by The Office of the Registrar Youngstown State University February, 2009.

1 Copyright © International Security, Trust & Privacy Alliance -All Rights Reserved Making Privacy Operational International Security, Trust.

HIT Policy Committee Meeting Nationwide Health Information Network Governance June 25, 2010 Mary Jo Deering, PhD ONC, Office of Policy and Planning NHIN.

Roundtable on Privacy in Transition: Is Privacy Policy Working in the Healthcare Sector?

Chapter 4: Laws, Regulations, and Compliance

Lael Echo-Hawk Crowell Law Office – Tribal Advocacy Group e.

1 Identity Theft Prevention and the Red Flag Rules.

Key Points for a Privacy Programme for Multinationals Steve Coope.

Cybersecurity Presentation Insert Name CSIA 412. Agenda 0 Purpose of Legislation 0 Influence of Legislation 0 Legislation vs. Other Regulatory Demands.

Health Insurance Portability and Accountability Act (HIPAA) © 2013 Project Lead The Way, Inc.Principles of Biomedical Science.

“Privacy and Security: Lessons from Non-Health Sectors” Professor Peter P. Swire Moritz College of Law The Ohio State University HIT Symposium at MIT July.

It’s not working It won’t charge My computer isn’t working.

Data Protection Officer’s Overview of the GDPR

Overtime By Stephen.

Student Confidentiality: The FERPA/HIPAA Facts

Role of the Legal System

Government Regulation

Other Sources of Information

Enforcement and Policy Challenges in Health Information Privacy

National HIPAA Audioconferences

HIPAA Privacy and Security Update - 5 Years After Implementation

Health Insurance Portability and Accountability Act

Evaluation and assessment

Student Confidentiality: The FERPA/HIPAA Facts

Presentation transcript:

Can the US Meet International Privacy Standards in an Era of Personal Health Records, Consumer Scores and Watch Lists? UNSW's Cyberspace Law and Policy Centre Seminar June 7, 2007 Robert Gellman Privacy and Information Policy Consultant Washington, DC © Robert Gellman 2007

2 US Method of Privacy Regulation Federal laws State laws (especially California) Self regulation (e.g., TrustE, BBBOnline) Common Law (privacy torts) No law (data brokers, marketers, merchants)

© Robert Gellman Selected Federal Laws Fair Credit Reporting Act Privacy Act of 1974 Gramm-Leach-Bliley (banking) Health Insurance Portability and Accountability Act (HIPAA) Family Educational Rights and Privacy Act Driver’s Privacy Protection Act Children’s Online Privacy Protection Act More… laws

© Robert Gellman COVERAGE OF US PRIVACY LAWS RECORDS RECORDKEEPEERSRECORDKEEPEERS

© Robert Gellman Official View: Regulate when necessary Another View: Pass privacy laws randomly, largely in response to horror stories Sectoral vs. Horror Story

© Robert Gellman 20076

7 Gaps Inconsistencies Sectoral Borders Geographic Borders Major Shortcomings

© Robert Gellman Can exist totally separately from regulated health records PHR record keepers not regulated Data obtained with consent of data subjects Only company policies apply, and they can be changed Completely open to commercial exploitation Personal Health Records

© Robert Gellman Newly identified category of data –Passenger Screening –Credit Score –Insurance Score –Bankruptcy Score –ID Score –Consumption/Marketing Score –Health Score See WorldPrivacyForum.org for more Consumer Scoring

© Robert Gellman Round up or round down? –Existing laws establish varying policies (bank records can be used for marketing; health records cannot) –Some records will necessarily receive a lower level of protection than today –Widely variable accountability measures Barriers to Common Rules I

© Robert Gellman Legislative Committee Jurisdictions –Banking Committee vs. Commerce Committee vs. other committees –Security breach legislation referred to many committees –Need strong political force to overcome entrenched jurisdictional rules Barriers to Common Rules II

© Robert Gellman Enforcement –Federal Trade Commission –State Attorneys General –Federal agency enforcement –Private right of action –Other approaches: ISPs enforce CAN-SPAM Barriers to Common Rules III

© Robert Gellman Preemption –Allow stronger state laws? –Replace all state laws? –What to do with existing privacy torts (a wholly state activity)? –Cut off innovations at the state level? Barriers to Common Rules IV

© Robert Gellman Conclusion Microsoft proposal for EU style law No precedent for federal preemption in such a widespread area Would require major public or Presidential support Some consensus, but not on enforcement How to stop a “Privacy Prevention Act”