May 23, 2019
NP Privacy Partner
Canada may require express consent for cross-border transfers of personal information, $3 million settlement emphasizes the importance of a robust HIPAA compliance program and more. Here’s what’s trending in data privacy and cybersecurity.
Canada’s comprehensive privacy law, the Personal Information Protection and Electronic Documents Act (PIPEDA), has permitted companies in receipt of individuals’ personal information to transfer such data outside Canada for processing or storage without the express consent of the individuals. That may change, however.—Benjamin R. Dwyer
An amendment seeking to expand the CCPA's private right of action and remove the thirty-day cure period did not receive a vote in the Senate Appropriations Committee, effectively blocking the bill.—Jenny L. Holmes
While limited in scope, permitting HIPAA-regulated entities to transmit and store patient data through Alexa marks significant progress toward the use of digital assistants in health care.—Valerie Breslin Montague
OCR published the Notification to alert the public that OCR is exercising its discretion in assessing Civil Money Penalties under HIPAA as amended by the HITECH Act.—Jena M. Grady
The foregoing has been prepared for the general information of clients and friends of the firm. It is not meant to provide legal advice with respect to any specific matter and should not be acted upon without professional counsel. If you have any questions or require any further information regarding these or other related matters, please contact your regular Nixon Peabody LLP representative. This material may be considered advertising under certain rules of professional conduct.