As currently drafted, the California Consumer Privacy Act (“CCPA”) leaves many questions unresolved regarding how the law applies to data collected and used in the health care and life sciences industries, particularly in the research context. Clinical research sponsors and other industry participants have raised concerns about how the CCPA may impede care delivery and

State attorneys general (AGs) continue to emerge as major regulators of privacy, and increasingly, with respect to compromises of health-related data.

Businesses concerned with U.S. customer or employee data have long known of the importance of the roles of the Federal Trade Commission (FTC) and the U.S. Department of Health and Human Services, among other federal agencies, in privacy regulation and enforcement; but the keen interest by state attorneys general in the area of privacy, and increasingly private health information, has received less attention.

That tide appears to be turning. In an international data privacy conference taking place this week in Washington, D.C., sponsored by the International Association of Privacy Professionals, both federal and state privacy regulators emphasized the importance of state AGs in privacy regulation and enforcement.
Continue Reading State AGs Upping the Ante on Health (and Other) Information Data Incidents – Expect Increased Enforcement Actions