[{"title":"Hospitals are selling treasure troves of medical data — what could go wrong?","url":"https://www.theverge.com/2021/6/23/22547397/medical-records-health-data-hospitals-research"},{"title":"Should we trust Apple with mental health data?","url":"https://www.theverge.com/23699287/apple-quartz-ai-mental-health-watch"}]

0 likes8 views

Washington passes law requiring consent before companies collect health data

April 28, 2023

An illustration of a large eye surrounded by other eyes

Illustration: Alex Castro / The Verge

A new Washington state law will require companies to receive a user’s explicit consent before they can collect, share, or sell their health data. Washington Governor Jay Inslee signed the My Health, My Data bill into law on Thursday, giving users the right to withdraw consent at any time and have their data deleted.

The law should help shield users’ health data from the companies and organizations not included under the HIPAA Privacy Rule, which prevents certain medical providers from disclosing “individually identifiable” health information without consent. The HIPAA Privacy Rule doesn’t cover many of the health apps and sites that collect medical data, allowing them to freely collect and sell this information to advertisers.

Under…

LATEST

Recent Posts

Washington passes law requiring consent before companies collect health data

The Metal Gear Solid 3 remake will reuse the original game’s voice lines — with no changes

Twitter is adding crowdsourced fact checks to images

Smart door lock maker Level is bringing a new video doorbell to apartment dwellers

Overwatch 2 celebrates its first in-game Pride event

Rivian teases its next-generation R2 SUV that’s smaller than the R1S

The future of podcasts is getting written in print