The U.S. Federal Trade Commission banned alcohol addiction treatment service Monument from disclosing health data to advertisers under a proposed settlement. The order resolves claims Monument had disclosed that information to third-party marketers without consent. The FTC also ordered corrective measures, including data deletion, consumer transparency and new privacy measures.
Full story
shareShare This
Related Stories
OCR director discusses HIPAA rule on reproductive health data
In an op-ed for The Hill, U.S. Department of Health and Human Services' Office of Civil Rights Director Melanie Fontes Rainer touted the recently approved Health Insurance Portability and Accountability Act rule on the disclosure of individual's reproductive health data in legal investigations. Rain...
FTC updates HIPAA Health Breach Notification Rule
The U.S. Federal Trade Commission updated the Health Insurance Portability and Accountability Act's Health Breach Notification Rule. The revised rule includes updated definitions to "underscore application" to health apps and "similar technologies not covered by HIPAA." Changes to the consumer and a...
Second global AI Safety Summit drawing less global interest
The second AI Safety Summit hosted virtually by the U.K. and South Korea in May is drawing less fanfare than the first summit last year, Reuters reports. Leading artificial intelligence policymakers from the EU and the U.S. are uncertain about attending the 21-22 May summit, while Canada and the Net...
UK CMA issues 2024 first quarter report on Google's Privacy Sandbox
The U.K. Competition and Markets Authority published its 2024 first quarter report on Google's efforts to implement the Privacy Sandbox. The report stated Google met all commitments made to the CMA, although "further progress is needed by Google to resolve our competition concerns ahead of (cookie) ...
Brazil's ANPD authorizes Security Incident Communication Regulation
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, announced the authorization of the Security Incident Communication Regulation, which aims to strengthen cybersecurity practices and increase transparency. The RCIS requires organizations to report security incidents th...
Comments
If you want to comment on this post, you need to login.