World Privacy Forum

COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic
New Report – Without Consent: An analysis of student directory information practices in U.S. schools, and impacts on privacy
Patient’s Guide to HIPAA: How to Use the Law to Guard your Health Privacy

COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

New Report – Without Consent: An analysis of student directory information practices in U.S. schools, and impacts on privacy

Patient’s Guide to HIPAA: How to Use the Law to Guard your Health Privacy

prev next

Jun 24 2020

Stolen Unemployment Benefits: How to detect and resolve this form of identity theft

Download the PDF: Stolen Unemployment Benefits: How to detect and resolve this form of identity theft Download the PDF of state resources: State Unemployment Insurance Fraud Resources and Links Fraudsters are taking advantage of the COVID-19 crisis to file false unemployment claims using stolen identity information. It is a particularly cruel fraud that, when successful,

May 19 2020

May 19, 2020 WPF Statement regarding HHS Secretary’s Section 1135 COVID-19 HIPAA Waiver

This statement discusses a 72-hour “statutory waiver” of 5 basic HIPAA rights (including the right to confidential communications). The waiver is triggered by the Secretary of HHS and applies for a 72-hour period beginning upon implementation of a hospital disaster protocol. This statement discusses this waiver, what it is, what is means, who is impacted, and our recommendations.

May 04 2020

Identity Week: WPF webinar on global contact tracing apps

Executive Director Pam Dixon gave a one hour webinar 4 May 2020 on global contact tracing apps and technology focusing on case studies in the US, UK, India, South Korea, Singapore, Australia, and other jurisdictions. Recommendations and lessons learned are included, as well as audience questions. Event: Festival of Identity Free Webinar Series Webinar: Proportionate

Apr 15 2020

April 15, 2020 WPF Statement on the COVID-19 Community Based Testing Sites HIPAA Waiver

In response to the COVID-19 (coronavirus) pandemic, the U.S. Department of Health and Human Services announced a HIPAA waiver April 9, 2020 regarding Community Based Testing Sites, which waives enforcement of all HIPAA privacy and security protections and data breach rules from some health care activities affecting COVID-19 testing. This statement from WPF includes the following information:
-What are the changes the Community Based Testing Sites HIPAA waiver creates?
-What are the privacy concerns?
-WPF recommendations to correct the privacy problems in the Community Based Testing Sites HIPAA waiver
-Background on HIPAA waivers and a list of all current waivers in force

Apr 14 2020

New Report – Without Consent: An analysis of student directory information practices in U.S. schools, and impacts on privacy

Without Consent is the first major benchmarking privacy report to examine school directory information practices and related privacy issues in a multi-year study across more than 5,000 schools at the primary, secondary, and postsecondary levels. The research found troubling and challenging student privacy problems that need to be urgently addressed. The report contains extensive findings and recommendations regarding student privacy, and includes best practices, sample forms, and resources for schools, parents, and students.

Generation Equality Forum; WPF panelist
29-31 March 2021, Mexico City and virtual
Brookings Institution Roundtable: Addressing federal privacy legislation
18 February 2021, Washington DC and virtual
World Health Organization HDC Meeting; WPF participant
18 February 2021, Vienna, Austria, and virtual

COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

The COVID-19 pandemic strained the U.S. health ecosystem in numerous ways, including putting pressure on the HIPAA privacy and security rules. The Department of Health and Human Services adjusted the privacy and security rules for the pandemic through the use of statutory and administrative HIPAA waivers. While some of the adjustments are appropriate for the emergency circumstances, there are also some meaningful and potentially unwelcome privacy and security consequences. At an appropriate time, the use of HIPAA waivers as a response to health care emergencies needs a thorough review. This report sets out the facts, identifies the issues, and proposes a roadmap for change.
New Report – Without Consent: An analysis of student directory information practices in U.S. schools, and impacts on privacy

Without Consent is the first major benchmarking privacy report to examine school directory information practices and related privacy issues in a multi-year study across more than 5,000 schools at the primary, secondary, and postsecondary levels. The research found troubling and challenging student privacy problems that need to be urgently addressed. The report contains extensive findings and recommendations regarding student privacy, and includes best practices, sample forms, and resources for schools, parents, and students.
Patient’s Guide to HIPAA: How to Use the Law to Guard your Health Privacy

Download PDF Download ePub Donate Credits → Version 2.0...

Stolen Unemployment Benefits: How to detect and resolve this form of identity theft

May 19, 2020 WPF Statement regarding HHS Secretary’s Section 1135 COVID-19 HIPAA Waiver

Identity Week: WPF webinar on global contact tracing apps

April 15, 2020 WPF Statement on the COVID-19 Community Based Testing Sites HIPAA Waiver

New Report – Without Consent: An analysis of student directory information practices in U.S. schools, and impacts on privacy

Reports

Infographics

WPF in the News