Expansion of California Medical Privacy Laws to Digital Health Operators
Are you a digital health operator in California?
Did you know that California’s Confidentiality of Medical Information Act (CMIA) was expanded this year to explicitly include mental health related apps and websites?
Under the amended CMIA, any business providing a "mental health digital service" now falls under the category of a "provider of health care," imposing data protection responsibilities on these digital health operators and increasing their legal exposure, including via a private right of action.
Digital health operators should expect to continue to see more targeted laws and regulations as privacy laws continue to adapt.
What do you think of this development?