FTC goes beyond HIPAA on security and privacy
Joseph Conn, of Modern Healthcare’s  HITS, reported on August 31, 2009, that “The FTC estimates that about 200 PHR vendors, 500 ‘PHR-related entities’ and 200 service providers will be covered by… new rules (based on ARRA of 2009) to protect the privacy and security of personally identifiable healthcare information stored on personal health-record systems offered by companies not covered by federal privacy rules under the Health Insurance Portability and Accountability Act (HIPAA) of 1996.” Conn produces a comprehensive story with links to previous articles and key documents.