Insight

Issue

Content Types

Know Your Rights: Health Privacy Guide

As of April 14, 2003, federal law provides some privacy protections for your medical records and gives you the right ot see your own records. In order to protect your medical records, you need to know what protections and rights you have and what you can do if you believe they have been violated. The information in this brochure is an overview of those rights and protections.

Read More Read More

Health Privacy Stories

What follows are but a sample of stories reported in the press about U.S. incidents affecting the privacy of personal health information. While many of these events took place prior to April, 2003 when the federal Health Insurance Portability and Accountabilty Act of 1996 (HIPAA) took effect, many others here have occurred with HIPAA in force. The federal Office for Civil Rights of the U.S. Department of Health and…

Read More Read More

Why the HIPAA Privacy Rules Would Not Adequately Protect Personal Health Records

This brief explains why the HIPAA Privacy Rule, in its current format, would provide weak privacy protection for personal health records (PHRs) offered by employers and Internet companies. The brief argues for stronger protections regarding marketing and commercial uses of information in PHRs and advocates for the Federal Trade Commission (FTC) to be involved in developing and enforcing those protections.

Read More Read More

Myths and Facts about HIPAA, Part 2

These Myths and Facts documents answer common myths about HIPAA and health privacy. These facts correct long-standing myths about the right to privacy, patient consent and rights, enforcement of HIPAA provisions, Internet- based health services, the interaction between HIPAA and state laws, information disclosures, marketing, and de-identified data.

Read More Read More

Myths and Facts about HIPAA, Part 1

These Myths and Facts documents answer common myths about HIPAA and health privacy. These facts correct long-standing myths about the right to privacy, patient consent and rights, enforcement of HIPAA provisions, Internet- based health services, the interaction between HIPAA and state laws, information disclosures, marketing, and de-identified data.

Read More Read More

Beyond Consumer Consent

Consumer consent has long been seen as the privacy pillar for networked health information. But a privacy approach that rests solely on obtaining consumer consent can provide weak protection for consumers. While consumers should be informed about and agree with how health information is being collected and used, consent alone cannot be a substitute for a comprehensive approach to privacy that protects consumers and builds trust.

Read More Read More

Policy Framework for Protecting the Privacy and Security of Electronic Health Information

CDT released the Policy Framework for Protecting the Privacy and Security of Electronic Health Information calling for the adoption of a comprehensive privacy and security framework for protection of health data as information technology is increasingly used to support exchange of medical records and other health information. Privacy and security protections will build public trust, which is crucial if the benefits of health IT are to be realized.

Read More Read More

Summary of Health Privacy Provisions in the 2009 Economic Stimulus Legislation.

The American Recovery and Reinvestment Act of 2009 (ARRA, sometimes referred to as "the stimulus") included provisions making significant improvement in the privacy and security standards for health information. The provisions on privacy and security (generally in ARRA’s Title XIII, Subtitle D and some parts of Subtitle A) can be grouped into four broad categories: Substantive changes to the HIPAA statue and privacy and security regulations …

Read More Read More

Refocusing the FTC’s Role in Privacy Protection: CDT Comments

The Center for Democracy & Technology (CDT) welcomes the opportunity to submit comments for the FTCʼs first in a series of public roundtable discussions exploring the privacy challenges posed by 21st-century technology and business practices that involve the collection and use of consumer data. CDT views these roundtable sessions as a historic opportunity for the FTC to develop and announce a comprehensive privacy protection policy for the next decade.

Read More Read More

Refocusing the FTC’s Role in Privacy Protection

1) 1) CDT Submits Comments in regards to the FTC Consumer Privacy Roundtable 2) The Significance of a Comprehensive Set of Fair Information Practice Principles 3) Examining FIPs at Work: Recent FTC Enforcement Actions Demonstrate a Path Forward 4) CDT Recommendations for Future FTC Action 1) CDT Submits Comments in regards to the FTC Consumer Privacy Roundtable CDT has submitted comments for the FTC’s…

Read More Read More