Current Law: Health Care Big Data Kirk J. Nahra Wiley Rein LLP Washington, D.C. (Dec. 8, 2014)

Slides:

Advertisements

Similar presentations

HIPAA In Relation to Other Federal Laws Professor Peter P. Swire Ohio State University Consultant, Morrison & Foerster LLP Glasser LegalWorks/HIPAA Conference.

Advertisements

Mental Health Issues & Information Sharing Professor Peter P. Swire The Ohio State University NAAG Task Force on School Safety July 5, 2007.

Fair Credit Reporting Act You must be told if information in your file has been used against you You can find out what is in your file You can dispute.

Mobile Payments and the FTC Manas Mohapatra Director of Mobile Policy Mobile Technology Unit Federal Trade Commission The views expressed are not necessarily.

 What is the Privacy Rule? The Standards for Privacy of Individually Identifiable Health Information (Privacy Rule) governs the use and disclosure of.

Confidentiality and HIPAA

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.

National Cancer Institute Cancer Therapy Evaluation Program (CTEP) presents: How to Obtain Protected Health Information (PHI) from an Outside Healthcare.

Ethics, Confidentiality, and HIPAA! 2006 ASAC Drug Court Confidentiality FMJ Multi- County November 8, 2006.

HIPAA Understanding Medical Privacy in the Work Place © Copyright 2005 The Nugent Law Firm, P.C. All Rights Reserved.

WHAT IS HIPAA? The Health Insurance Portability and Accountability Act of 1996 (HIPAA) provides certain protections for any of your health information.

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

Davis Wright Tremaine LLP Non-HIPAA Governmental Regulation of Healthcare Privacy and Security Sixteenth HIPAA Summit/The Privacy Symposium August 21,

Informed Consent.

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

Health Insurance Portability and Accountability Act (HIPAA)

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Health IT Privacy and Security Policy Jodi Daniel, J.D., M.P.H. Director, Office of Policy and Research, Office of the National Coordinator for Health.

Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.

Disclaimer This Presentation is provided “as is” without any express or implied warranty. This Presentation is for educational purposes only and does not.

HIPAA Health Insurance Portability & Accountability Act of 1996.

Protecting information rights – advancing information policy Privacy law reform for APP entities (organisations)

HIPAA Collaborative of Wisconsin PAYMENT, COLLECTIONS, AND ACCEPTED BENEFITS FURTHER DEFINITION OF THE PRIVACY RULE Copyright HIPAA Collaborative.

Banks and the Privacy of Medical Information 8 th National HIPAA Summit March 8, 2004 Joy Pritts, JD Health Policy Institute Georgetown University

CONSUMER PROTECTION AND LITIGATION: CONSUMER PROTECTION AND LITIGATION: Ryan Mehm Attorney Bureau of Consumer Protection Federal Trade Commission The views.

Employee Law Module What you need to do to protect credit history and the documents that you will need for employment. The information in this module comes.

13 July 2006Susan Joseph Health Privacy It’s My Business Health Records Act 2001 (Vic) eReferral Service Co-ordination System.

Key Issues For Your Remaining HIPAA Compliance Time – The Health Plan Perspective Kimberly GrayKirk J. Nahra Chief Privacy OfficerWiley Rein & Fielding.

Privacy and Security Laws for Health Care Organizations Presented by Robert J. Scott Scott & Scott, LLP

The New HIPAA Era: What's New, What's Different and What's Actually Important Kirk J. Nahra Wiley Rein LLP Washington, D.C

Enhancing Communication Among Health Care and Educational Programs How Privacy Regulations Impact Delivery of Effective Services by Karl R. White National.

Component 4: Introduction to Information and Computer Science Unit 2: Internet and the World Wide Web 1 Component 4/Unit 2Health IT Workforce Curriculum.

Computerized Networking of HIV Providers Workshop Data Security, Privacy and HIPAA: Focus on Privacy Joy L. Pritts, J.D. Assistant Research Professor Health.

Averting the Collision: Privacy Doctrine & Health Information Exchange Katherine L. Ball, MD, MSc William A. Yasnoff, MD, PhD, FACMI e-Health Initiative.

Federal Trade Commission required to issue and enforce regulations concerning children’s online privacy. Initial COPPA Rule effective April 21, 2000;

The PRISM Privacy Tool: A User’s Guide PHDSC Home Page  PRISM Web Page 

HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.

Privacy in computing Material/text on the slides from Chapter 10 Textbook: Pfleeger.

Where Did HIPAA Come From? “HIPAA Then and Now” Peter Swire Georgia Tech Scheller College of Business Alston & Bird LLP IAPP-Las Vegas 2015.

Reflections on the State of Privacy Risk Management in Health Care Benefits Administration (one year and counting …) Mark Lutes, Esq. Partner Epstein Becker.

Wiley Rein & Fielding LLP HIPAA Privacy: Fundamentals and Key Challenges Kirk J. Nahra Wiley Rein & Fielding LLP Washington, D.C

FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.

HIPAA BASIC TRAINING Presented by Anderson Health Information Systems, Inc.

HIPAA Privacy The Morning After Panel What do we do now? William R. Braithwaite, MD, PhD (moderator) Washington, DC Ross Hallberg, Corporate Compliance.

C HAPTER 34 Code Blue Health Sciences Edition 4. Confidentiality of sensitive information is an important issue in healthcare. Breaches of confidentiality.

FACTA Medical Chicago Regional Training Conference Indianapolis, Indiana June 14, 2006 David Lafleur, Policy Analyst-Compliance Federal Deposit Insurance.

Health Insurance portability and Accountability Act (HIPAA)‏

Wiley Rein & Fielding LLP G-L-B’s Applicability To Health Care Organizations Kirk J. Nahra Wiley Rein & Fielding LLP Washington, D.C.

Copyright © 2015 by Saunders, an imprint of Elsevier Inc. All rights reserved. Chapter 3 Privacy, Confidentiality, and Security.

HIPAA Training Workshop #1 Council of Community Clinics – San Diego February 7, 2003 by Kaye L. Rankin Rankin Healthcare Consultants, Inc.

HIPAA Health Insurance Portability and Accountability Act.

Prevention of Identity Theft. Why now, Why us? Federal Trade Commission (FTC) regulations for Identity Theft which may not apply, but it is good business.

Data Security and Privacy Overview and Update Peter Moldave October 28, 2015.

Top Privacy and Security Developments for the Health Care Industry Kirk J. Nahra Wiley Rein LLP Washington, D.C (December.

Human Subjects Update E. Wethington, Chair, UCHS.

Legal, Regulations, Investigations, and Compliance Chapter 9 Part 2 Pages 1006 to 1022.

Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.

Health Insurance Portability and Accountability Act (HIPAA) © 2013 Project Lead The Way, Inc.Principles of Biomedical Science.

HIPAA Training Workshop #3 Individual Rights Kaye L. Rankin Rankin Healthcare Consultants, Inc.

Health Insurance Portability and Accountability Act of 1996

Privacy & Confidentiality

APP entities (organisations)

Disability Services Agencies Briefing On HIPAA

HIPAA Pros - Minimum Necessary

Other Sources of Information

National Congress on Health Care Compliance

Enforcement and Policy Challenges in Health Information Privacy

Non-HIPAA Governmental Regulation of Healthcare Privacy and Security

Legal Issues in Podcasting: What Broadcasters Need to Know

Health Insurance Portability and Accountability Act

Presentation transcript:

Current Law: Health Care Big Data Kirk J. Nahra Wiley Rein LLP Washington, D.C. (Dec. 8, 2014)

The Problem HIPAA has never covered all health care data Explosion in mobile apps, web sites, PHRs and other areas have made the gaps much bigger Health care entities are now using a broader range of “non-health” data for health care purposes. So what kinds of protections are available for this “non-HIPAA” data? Page 2

The FTC Act The FTC has broad authority in general to “prevent... unfair or deceptive acts or practices.” No regulations in this area FTC has developed enforcement of data security standards (although these are under challenge) FTC has not to date undertaken broad “privacy” enforcement in the healthcare area Page 3

The FTC Act FTC clearly can take enforcement action against statements that are not true – e.g., privacy notices that mis-state what is being done with info. Is there an ability to go more broadly against “unfair” practices? What would those be? Page 4

FCRA Regulates consumer reporting agencies (primarily) in connection with credit, employment and insurance. Consent required to report medical information for these purposes (with some disclosure for medical debts) Prohibitions on using medical information for credit purposes (except for debt issues) Page 5

Problems today No clear “privacy” standards for FTC other than truly egregious behavior FCRA of important but very limited relevance State law is confusing, often outdated and seldom enforced Substantial open gaps in protections for data that is not clearly within the HIPAA structure Becoming harder to define what “healthcare data” is. Page 6

Next Steps 3 Main Options Something specific for this non-HIPAA health care data Something that covers all health care data (a “general” HIPAA) – either through HIPAA or otherwise A broader overall privacy law (with or without a HIPAA carve-out) Page 7

Questions? For further information, contact: Kirk J. Nahra Wiley Rein LLP Subscribe (for free) to Privacy in Focus - tters Page 8