Industry Groups Urge FTC to Modify Breach Notification Rule
Marianne Kolbasuk McGee
Several health IT industry groups are urging the Federal Trade Commission to update its health data breach notification rule. That's because the rule, designed to cover health data not protected under HIPAA, currently applies only to personal health records and related vendors, and it needs to address technological developments and regulatory gaps that have evolved since it was implemented a decade ago.
In May, the FTC - as part of a periodic review of its rules - issued a request for comment on whether the agency's health breach notification rule's provisions should be modified (see: FTC Assessing Whether Its Health Data Breach Rule is Stale).
The FTC rule...