CCPA Amendment Update: California Legislature Approves Exceptions for HIPAA De-Identified Information and Other Health Data

By and on October 22, 2020

On September 25, 2020, California Governor Gavin Newsom signed into law California AB 713, which amends the California Consumer Privacy Act (CCPA) to except from its requirements certain health information, including information that has been de-identified in accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA). The bill’s enactment eases some of the CCPA compliance challenges experienced by the health care and life sciences industries by more closely aligning the CCPA with HIPAA and other laws governing human subjects research. The new law also amends the CCPA to except all business associates to the extent that they maintain, use or disclose patient information in the same manner as protected health information under HIPAA.

Access the article.

Daniel F. GottliebDaniel F. Gottlieb
Daniel F. Gottlieb counsels a wide range of health care industry clients, including health care providers, health plans, health information technology (IT) vendors and life sciences companies. He represents these entities on health IT acquisitions, privacy and data protection, reimbursement, fraud and abuse, and other health care regulatory and transactional matters. Daniel is a co-leader of the Firm’s Global Privacy and Cybersecurity Practice. Read Daniel Gottlieb's full bio.


Deepali DoddiDeepali Doddi
Deepali Doddi concentrates her practice on data privacy and cybersecurity matters. She regularly advises clients across a broad spectrum of industries on issues arising under domestic data security and privacy laws and regulations, including COPPA, CAN-SPAM, TCPA, GLBA, the FTC Act, CalOPPA, DFARS cybersecurity requirements and breach notification laws. Click here to learn more about Deepali's practice. 

STAY CONNECTED

TOPICS

ARCHIVES