DirectTrust recently submitted comments in response to the proposed Health Breach Notification Rule (HBNR) from the FTC. As technology has expanded, breaches of health apps are becoming more commonplace. Often these apps are not subject to HIPAA regulations, but are subject to FTC regulations. FTC is therefore seeking comment on changes to the HBNR to expand their scope of enforcement.
DirectTrust Community Participation
DirectTrust would like to thank the members of our community that participated in providing feedback and drafting comments to the FTC on the proposed Health Breach Notification Rule. They include:
- Mike Green, Availity
- Michelle Comeau, CCS Health
- Kevin Miller, DataMotion
- Sam Ko, DigiCert
- Scott Rea, eMuhdra
- Ben Manning, etherFAX
- Dan Soule, Health Catalyst
- Liz Reardon, Mass HIWay
- Michele Darnell, Secure Exchange Solutions
- Daniel Kim, Surescripts
- Kathy Howard, Updox
- Shaun Newton, ZeOmega
Additional and Full Comments
Members of the DirectTrust community contributed to our full commentary and responding to the various questions the rule specifically asked. The responses to each of those sections is linked in our full comment letter below.