As consumerism in healthcare increases, companies and the individuals they serve are increasingly sharing data with third-party application developers that provide innovative ways to manage health and wellness, among numerous other products that leverage individuals’ identifiable health data. As the third-party application space continues to expand and data sharing becomes more prevalent, it is critical that such data sharing is done in a responsible manner and in accordance with applicable privacy and security standards. Yet, complying with applicable standards requires striking the right balance between rules promoting interoperability vis-à-vis prohibiting information blocking vs. ensuring patient privacy is protected. This is especially difficult when data is sent to third party applications that remain largely unregulated from a privacy and security perspective. Navigating this policy ‘tug of war’ will be critical for organizations to comply with the rules, but also maintain consumer confidence.
Blog Editors
Recent Updates
- NYDFS Cybersecurity Crackdown: New Requirements Now in Force, and "Covered Entities" Include HMOs, CCRCs—Are You Compliant?
- The Case for Regular Legal Maintenance: A Litigation Readiness Mindset for Modern Health Care Organizations
- The Rising Threats of Multi-Modal and Agentic AI in Cyber Attacks
- State Insurance Department Statements Scrutinize MA and MedSupp Unfair Trade Practices
- DOJ Subpoena Seeks Health Information of Hospital Patients Receiving Gender-Affirming Care: Will Judge Grant Motion to Quash?