Despite industry groups’ and tech companies’ numerous efforts over the past few months to water down and ultimately halt the first-ever U.S. data privacy law, the California Consumer Privacy Act of 2018 (“CCPA” or “the Act”), the CCPA now has its final language set on September 13, 2019, the end of California’s legislative calendar, and will go into effect on January 1, 2020. The goal is to give California residents control of their personal information collected and processed by companies.
The Health Insurance Portability and Accountability Act (HIPAA) and the Patient Protection and Affordable Care Act (ACA) jointly create national standards for electronic transactions, code sets, and unique identifiers. The ACA introduced Administrative Simplification provisions in 2010 and now the Centers for Medicaid and Medicare Services (CMS) has launched a Compliance Review Program to ensure that HIPAA covered entities are abiding by the Administrative Simplification rules.
Artificial intelligence is all around us. Whether it exists in your iPhone as “Siri” or in complex machines that are detecting diabetic retinopathy, it is constantly growing and becoming a regular part of the modern day. As with any new technology, regulation surrounding artificial intelligence is becoming increasingly problematic. The question facing us now is how do we encourage further development without accidentally hindering its growth? Recently, the Food and Drug Administration has attempted to take steps toward further regulation of artificial intelligence by introducing a review process for medical artificial intelligence. This is just one instance of how regulation may affect the evolution of artificial intelligence.
Cook County General Administrative Order 18-1 pertains to the Standard HIPAA Qualified Protective Orders (QPO) that will be permitted in Cook County. These orders will only be allowed for cases that are in litigation where the Plaintiff and Plaintiff’s counsel authorize disclosure of a litigants’ protected health information (PHI). It also requires all entities who received PHI to either return the documents to the Plaintiff or destroy them at the end of the case. These changes mean that Plaintiff’s attorneys will see a change in the handling of Plaintiff’s medical records and other documents covered under the QPO containing PHI.
In March 2019, Rush University Medical Center (“Rush University”) sent out breach notification letters to approximately 45,000 patients. The letter advises patients that a privacy incident occurred that may have involved the patients’ personal information. The privacy incident was caused by an employee of a third-party financial services vendor. The employee released a file that contained patient information to an unauthorized person. According to the breach notification letter, law enforcement and regulatory officials were involved in the investigation of the privacy incident. Rush University sent the breach notification letter in compliance with the Health Insurance Portability and Accountability Act’s privacy and security rules.
Ever since the Facebook and Cambridge Analytica scandal, concerns surrounding data privacy and protection have been growing. Both government agencies and individual users have particularly been concerned on how their data is being collected and used on social media websites such as Facebook. Germany has taken action in response to such concerns and recently took a step against Facebook’s collection of data in a decision that outlawed Facebook’s entire advertisement regime.
Although the nation’s longest-ever government shutdown has ended, agencies forced to furlough employees and shutter temporarily are still facing the effects of the funding gap. On January 25th, President Trump agreed to sign a continuing resolution that will reopen and fund the federal government through February 15th. The government reboot means that the roughly 800,000 federal employees furloughed or forced to work without pay should expect to receive their back pay soon, but the thirty-five-day suspension of government functions comes with significant aftershock. While various regulatory agencies scramble to address their backlog of work, life for Americans who interact with these agencies has been hindered indefinitely.
The Common Rule, the Federal policy protecting human subjects of biomedical and behavioral research, was published in 1991. The process to update the policy has taken place over the last several years, leading to the final rule revisions which were effective as of July 19, 2018. After January 20, 2019, institutions are now permitted to implement the entirety of the revised Common Rule. Any institution receiving funds, supervision, or review from any of the twenty Federal Departments and Agencies that have codified the Common Rule must implement this revised rule in their compliance programs.
The state of Washington is proposing new water quality regulations in an effort to encourage growth to the salmon population. The campaign against the dams in the Columbia and Snake river basins has been fought for decades and continually struggles to balance the environmental impacts with industry and energy. This regulation is the newest strategy to attempt to strike a balance between the environmental concerns and the industry concerns. Further, as more attention is given to the dwindling population of killer whales, many are calling this an emergency requiring immediate action. This action is a timely response to the recent calls to action.
In December 2018, Dr. Christopher Duntsch lost his appeal and the court upheld his life sentence. The name may not sound familiar, but to the medical community in Dallas, Texas, Christopher Duntsch represents what happens when every part of the medical regulatory system fails to protect patients. Christopher Duntsch was given the nickname “Dr. Death” in November 2016 when the DMagazine ran a cover story on him and his victims. In 2018, Wondery produced a six-part podcast series named “Dr. Death” detailing Duntsch’s educational and medical history and the acts that led him to incarceration.