PYA Manager Erin Walker recently published an article in the Journal of Health Care Compliance, a national bimonthly publication that provides current and emerging trends and issues related to healthcare compliance.
Walker’s article, “Under a Watchful Eye: Addressing the Compliance Risks Associated with Tracking Technologies,” is part of a column in the journal dedicated to PYA thought leadership. The article examines the prevalent use of digital tracking technology and its potential impact on Protected Health Information (PHI). Walker explains the technology is embedded in websites and mobile apps to gather user data for marketing purposes, and the uncontrolled use of it jeopardizes PHI. She states that HIPAA regulations require healthcare organizations and vendors to protect patients’ data and install controls to prevent data breaches.
In the article, Walker states,
“…a growing number of healthcare organizations have reported data breaches involving the use of third-party technologies, such as Google Analytics and Meta Pixel….The December 1, 2022, bulletin published by the Department of Health and Human Services (HHS) Office of Civil Rights noted that HIPAA regulated entities are not permitted to use tracking technologies in a manner that would result in impermissible disclosures of PHI….”
Walker further provides helpful safeguards for HIPAA-regulated entities including the scrutiny of vendor relationships, the inclusion of tracking technology use in risk analyses, the implementation of administrative, physical, and technical controls, and more.
The Journal of Health Care Compliance is published by Wolters Kluwer. Walker’s article is in the November/December 2023 issue, which is available to subscribers of the journal.
If you would like assistance in healthcare regulatory compliance, cybersecurity, or any other matter related to healthcare compliance and strategy, one of our executives would be happy to assist. You may email them below or call (800) 270-9629.
