World Privacy Forum

Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

Patient’s Guide to HIPAA: How to Use the Law to Guard your Health Privacy

prev next

May 06 2021

WPF comments on HHS proposal to change HIPAA Privacy Rule

WPF filed comments today with the Department of Health and Human Services regarding an important Notice of Proposed Rulemaking that, if adopted, will bring substantial changes to patients’ electronic health records and how they are managed, among other issues. In general, we found much to support in the NPRM. However, there are sections of the

Apr 20 2021

WPF Statement to the Civil Society Consultation on Sustainable Health Security Preparedness and Response, C20, 2021

The World Privacy Forum participated in the C20 Civil Society Consultation on Sustainable Health Security Preparedness 20 April, 2021, part of the preparatory work for the G20 health-related declaration. (Rome Declaration.) In our attached statement to the C20 / G20, we outline three key requirements to allow safe and sustainable health data ecosystem knowledge utilization, including privacy and effective data governance, interoperability, and robust inclusion of LMICs and vulnerable or
marginalized populations in standards development.

Apr 06 2021

Gender Matters in Identity Systems: How an ID4Africa Livecast Broke Important New Ground in Gender and Privacy

Recently, ID4Africa held an extremely compelling and meticulously researched livecast on the issue of gender and identity systems, with good discussions that also touched on privacy in this context. The livecast boasted an excellent roster of experts, all of whom are active work in the field. Each presented well-substantiated, groundtruthed research and insight about the myriad ways that how identity systems mediate gender matter a great deal. The cumulative effect was eye-opening.

Apr 05 2021

US Government 20th Joint Assessment Report, AG Guidelines, and more

There are many transparency documents that have been published relating to the US Intelligence Community. There are new updates to several key documents, which we have listed and linked below. While admittedly dense reading, these are key privacy-related documents relevant to US Government operations and activities and taken together, are an important resource. January 2021

Mar 03 2021

WPF urges US Federal Trade Commission to re-examine data breach notification requirements for health data in Flo Health proposal

The World Privacy Forum has submitted comments to the FTC regarding its proposed consent order In the Matter of Flo Health, Inc. requesting that the FTC conduct further analysis regarding the FTC Health Data Breach Rule and its potential applicability to the alleged unconsented sharing of women’s pregnancy, menstruation, mental health, and other data with

National IDs Around the World — Interactive map

About this Data Visualization: This interactive map displays the presence...
Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

This comprehensive report and proposed bill text is focused on the Privacy Act of 1974, an important and early Federal privacy law that applies to the government sector and some contractors. The Privacy Act was written for the 1970s information era -- an era that was characterized by the use of mainframe computers and filing cabinets. Today's digital information era looks much different than the '70s: smart phones are smarter than the old mainframes, and documents are now routinely digitized and stored and perhaps even analyzed in the cloud, among many other changes. The report focuses on why the Privacy Act needs an update that will bring it into this century, and how that could look and work. This work was written by Robert Gellman, and informed by a two-year multi-stakeholder process.
COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

The COVID-19 pandemic strained the U.S. health ecosystem in numerous ways, including putting pressure on the HIPAA privacy and security rules. The Department of Health and Human Services adjusted the privacy and security rules for the pandemic through the use of statutory and administrative HIPAA waivers. While some of the adjustments are appropriate for the emergency circumstances, there are also some meaningful and potentially unwelcome privacy and security consequences. At an appropriate time, the use of HIPAA waivers as a response to health care emergencies needs a thorough review. This report sets out the facts, identifies the issues, and proposes a roadmap for change.

WPF comments on HHS proposal to change HIPAA Privacy Rule

WPF Statement to the Civil Society Consultation on Sustainable Health Security Preparedness and Response, C20, 2021

Gender Matters in Identity Systems: How an ID4Africa Livecast Broke Important New Ground in Gender and Privacy

US Government 20th Joint Assessment Report, AG Guidelines, and more

WPF urges US Federal Trade Commission to re-examine data breach notification requirements for health data in Flo Health proposal

Reports

Infographics

WPF in the News