From HHS OCR: On March 18, 2024, OCR revised its guidance on “Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates” to remind regulated entities and the public that the use of online tracking technologies is subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy, Security, and Breach…
Category: Breaches
Dozens of data brokers disclose selling reproductive healthcare info, precise geolocation and data belonging to minors
Suzanne Smalley reports: New information made public by the state of California shows that a significant portion of data brokers collect and sell sensitive information on topics like reproductive health, as well as data belonging to children. Out of 480 data brokers registered with the California Privacy Protection Agency (CPPA), 24 indicated they sell data belonging to…
Google Biometric Law Breach Judge Skeptical of Suit’s Viability
Joyce E. Cutler reports: A lawsuit accusing Google LLC of violating the Illinois Biometric Information Privacy Act by accessing images collected and packaged by two other companies got a lukewarm reception from a federal judge in Silicon Valley. Judge Beth Labson Freeman with the US District Court for the Northern District of California noted Thursday that the…
These Video Doorbells Have Terrible Security. Amazon Sells Them Anyway.
Stacey Higginbotham and Daniel Wroclawski report: On a recent Thursday afternoon, a Consumer Reports journalist received an email containing a grainy image of herself waving at a doorbell camera she’d set up at her back door. If the message came from a complete stranger, it would have been alarming. Instead, it was sent by Steve…