Congressional Committee Joins the Fray in FTC Dispute with LabMD
As the legal battle between the Federal Trade Commission and LabMD rages on, the House Committee on Oversight and Government Reform has now gotten involved. The FTC vs. LabMD case will help set a precedent regarding how far the FTC can go to enforce data security practices. But according to a recent article in HealthcareInfoSecurity, the House Committee has notified the FTC it is investigating the security services firm at the center of the dispute between the FTC and LabMD, TIversa. As a result, the FTC’s administrative trial is temporarily on hold.
At the conclusion of this trial there should be more clarity on the FTC’s long-term role as an enforcer of data security. If you are responsible for information privacy and security for your organization, it’s worth watching closely to see how this unfolds.
As more state and federal organizations are wading into the healthcare pool to protect consumers from breaches of their protected health information, strong practices in HIPAA-HITECH compliance, particularly in Risk Analysis and Risk Management, have never been more critical. A panel of experts recently suggested most organizations are not ready for increased enforcement efforts from the Office for Civil Rights and other regulators but that their best bet is to become familiar with and follow NIST standards for Risk Analysis.
How does your organization stack up?
Latest posts by Bob Chaput (see all)
- HIPAA Risk Analysis Tip – What Level of Detail is Adequate? - April 29, 2017
- HIPAA Risk Analysis Tip – How Comprehensive Must Your HIPAA Security Risk Analysis Be? - April 25, 2017
- HIPAA Risk Analysis Tip – Does OCR really use the “Guidance on Risk Analysis Requirements under the HIPAA Security Rule”? - April 23, 2017