The Federal Trade Commission published and updated its Health Breach Notification Rule at 16 CFR Part 318 to broaden protections for consumers that share their personal health information with vendors, such as health related mobile apps or other connected devices, for services that are not covered by the HIPAA Regulations. The Health Breach Notification Rule […]
Read MorePart 11 of Title 21 of the Federal Code of Regulations outlines expectations for creating, managing and maintaining electronic records as well as electronic signature capture and intent. Its purpose is to outline when electronic records and electronic signatures are to be considered trustworthy, reliable, and generally equivalent to paper records and handwritten signatures executed […]
Read MoreStudent records at the University of Utah are governed by the Family Rights and Privacy Act (FERPA). The act forbids the university from releasing personally identifiable student educational records or files, or the personal information contained in those files, without the student’s written consent, except in specified situations. Read more about Student Privacy
Read MoreThe university is committed to accuracy and transparency in its records and might be obligated under the FCRA to investigate disputed information held by consumer reporting agencies or to inform consumers or potential employees if any adverse action is taken based on information contained in a consumer report. United States’ first privacy law focused solely […]
Read MoreThe GLBA requires financial institutions – or companies that offer consumers financial products like loans or insurance – to explain their information-sharing practices to their customers and to safeguard sensitive data. Gramm-Leach-Bliley Act | Federal Trade Commission (ftc.gov) The GLBA regulations may apply when the university provides financial aid to students and coordinates insurance for […]
Read MoreIf you are sending prerecorded or automatic telephonic solicitations, including SMS text messaging, for purpose of encouraging the purchase of goods or services, those communications may be subject to the TCPA. The TCPA excludes: Tax exempt, non-profit organization calling on their own behalf, Robocalls to residential lines made by healthcare-related Covered Entities governed by HIPAA. […]
Read More