CVS Health Faces HIPAA Probe Over Alleged Use of Patient Data for Lobbying and Political Advocacy
This case highlights the regulatory risk when patient data is used for lobbying and advocacy, underscoring the need for strict governance of PHI, third-party data sharing, and vendor risk management for any business handling health data.
Govt officials free doctors from unlawful Biden-era abortion, gender health privacy changes
The piece discusses recent privacy rule changes affecting how doctors and health systems protect sensitive information, signaling to business leaders the need to update privacy policies, consent workflows, and data handling agreements to stay compliant and protect brand trust.
DOH Cybersecurity Regulation Deadline Fast Approaching
New cybersecurity requirements from the New York State Department of Health create a clear compliance deadline for healthcare organizations and their partners, emphasizing risk assessments, encryption, incident response, and vendor oversight that business leaders should plan for now.