Prescribing Privacy for the Digital Health Era

In today’s Tech Pulse, gain insight into how:

• Washington's My Health My Data Act extends health data privacy far beyond traditional healthcare, affecting many businesses, from online vendors to dine-in restaurants.
• FDA's recent requirements around the Software Bill of Materials (SBOM) aim to revolutionize cybersecurity in medical devices by enhancing transparency and compliance in development.
• Advancements in cryptography and decentralized systems are rising to meet the urgent need for stronger consumer data protection amid increasing cyber threats against major corporations.

Each of these articles is penned by members of Forbes Technology Council , key luminaries shaping the future of technology leadership.

Grab your coffee, and let's dive in!

Staying Compliant with Washington's My Health My Data Act

Ian Cohen - CEO LOKKER

As of March 31, 2024, the My Health My Data Act (MHMDA) mandates unprecedented online health privacy standards in Washington State, surpassing the protection measures currently provided by HIPAA.

This legislation broadens the scope of what constitutes consumer health data (CHD) and affects both traditional healthcare sectors and non-healthcare businesses, like restaurants and wellness websites.

Explore key insights from the MHMDA below:

???Extended Definitions: MHMDA expands CHD to include various personal health-related details, from biometrics to psychological profiles and reproductive health information.

???Wider Business Impact: Entities not traditionally covered by HIPAA, such as online platforms and in-person locations noting health issues (e.g., food allergies in restaurants), are now under the law’s umbrella.

?? Litigation Opportunities: The Act allows for a "private right of action," meaning that individuals can directly sue businesses, similar to the implications seen with the Video Privacy Protection Act (VPPA).

Proactive Steps for Compliance:

?? Consent Technology: Adopt advanced tech solutions for obtaining explicit user consent before collecting CHD - a shift from the typical cookie consent frameworks.

??Cease Location Tracking: Avoid geo-targeting or ads that might specify health service locations, abiding by MHMDA’s strict geofencing prohibitions.

???Field Protection: Secure all open text fields on digital forms and booking tools, ensuring third-party trackers do not collect unauthorized CHD.

Read The Full Article >

Enhancing Medical Device Security Through FDA's SBOM Requirements

Christian Espinosa - CEO Blue Goat Cyber

With the Federal Drug Administration's recent mandate, creating a Software Bill of Materials (SBOM) has become a critical aspect of the premarket submission process for medical devices.

This update fulfills compliance requirements and significantly bolsters cybersecurity measures for medical devices by mapping every component and dependency involved.

Here’s what you need to know:

?? Detailed Inventory: An SBOM must include all components, such as open-source and third-party software, firmware, binaries, cloud assets, and APIs.

???Documentation Necessity: Accurate and comprehensive documentation of all software elements ensures compliance and facilitates quicker premarket approval processes.

???Continuous Updates: Keeping the SBOM current with all software alterations is vital to maintaining its relevance and effectiveness.

Advantages of Implementing SBOMs

??? Enhanced Vulnerability Management: Complete visibility into the software enables timely updates or removals of vulnerable components, preventing potential cybersecurity threats.

?? Software Integrity Assurance: SBOM helps maintain high standards of safety, security, and reliability throughout the software lifecycle, vital for FDA compliance and industry reputation.

???Licensing Compliance: Managing software licenses effectively prevents legal and operational risks associated with non-compliant software usage.

Additional Benefits

???Supply Chain Transparency: SBOMs provide clear insights to healthcare providers into the medical device's software structure, enhancing trust and decision-making in technology integrations.

???Data-Driven Security Measures: Continuous monitoring and data collection from SBOM facilitate informed decision-making in cybersecurity strategies.

Read The Full Article >

Mitigating Data Breaches: The Power of Decentralization & Advanced Cryptography

Steven Smith - Head of Protocol Tools for Humanity

The escalation of cybersecurity breaches highlights the need for robust technologies to safeguard private data. Even as organizations increase security investments, breaches continue to rise, demonstrating the complexities of protecting digital information.

The recent attacks on prominent companies underscore the critical vulnerabilities facing centralized data storage systems.

Understand the role of centralization in security breaches:

?? Centralized Risks: Centralization has been identified as a key vulnerability, with large data repositories becoming prime cyberattack targets.

???Rising Breaches: Despite increased cybersecurity funding, breaches have surged by 20% from 2022 to 2023, doubling the number of global victims.

New Tech for Enhanced Security

???Decentralization Advantages: Spreading data across multiple locations significantly reduces hacking risks and unauthorized access, while strong encryption safeguards stored data.

???Innovative Cryptography: Technologies like Zero-Knowledge Proofs (ZKPs) offer privacy-preserving authentication, enabling secure transactions without exposing sensitive information.

??? Personal Custody Concept: This approach assures users complete control over their data, avoiding third-party management risks associated with traditional centralized systems.

The Challenges Ahead

??? Operational Overheads: The sophisticated nature of these technologies may lead to increased computational costs and potential performance impacts.

?? Evolving Legal Landscape: As technological innovations outpace current regulations, ensuring compliance presents ongoing hurdles.

Read The Full Article >

Wrapping Up

If these articles sparked your interest, we have a network that you will absolutely love: Forbes Technology Council .

This exclusive, vetted community brings together the brightest minds in technology — founders, CEOs, CIOs, CTOs, CISOs, and other leaders of technology-focused teams.

Put yourself at the forefront of innovation with access to publishing opportunities on Forbes.com, a personalized, SEO-friendly Executive Profile, and the chance to network with other respected leaders in the field.

Join Forbes Technology Council today, and become part of a group driving transformation in technology.