California legislators are giving companies dealing in personal data—including some health information—yet another set of restrictions to contend with thanks to a new broad privacy law passed last week.
The California Consumer Privacy Act of 2018 gives consumers more control over the personal data that businesses collect. Companies have to tell people what data they’ve collected, what they’re using the data for, and which third parties they’ve given access to the data, among other requirements.
Although healthcare companies already comply with HIPAA, the new state law will create another layer of compliance when it goes into effect in a year and a half.
“It’s going to have a significant impact on the healthcare sector,” said Mark Brennan, a partner with Hogan Lovells. “From an operational perspective, it’s going to be interesting to see how companies work to sort out these requirements.” (read more)