CyberSecurityBoard
Sponsor Register Login

FTC Bans Online Mental Health Firm From Sharing Certain Data

The Federal Trade Commission has proposed restricting a mental telehealth service firm from sharing consumer data and requiring it to pay a $7 million penalty to settle allegations that the firm used online tracking tools to unlawfully disclose sensitive health information to third-party advertisers without the patients' consent.
The FTC also alleges the firm failed to honor its easy cancellation promises to consumers.
The FTC's proposed order against Cerebral, filed in federal court by the Department of Justice on Monday, seeks to restrict how the company can use or disclose sensitive consumer data and calls for the company to pay more than $7 million in penalties, including $5.1 million to partially refund consumers affected by the company's deceptive cancellation practices.
The proposed order must be approved by the U.S. District Court for the Southern District of Florida before it can go into effect.
The FTC's action against Cerebral follows a data breach the company reported to the U.S. Department of Health and Human Services in March 2023 as affecting nearly 3.2 million individuals.
The incident involved the company's use of website tracking tools to share sensitive patient information with third parties including Facebook, Google and TikTok - without the individuals' consent.
The proposed order against Cerebral follows several similar FTC actions against other firms in several other health data privacy cases over the last year or two, including those involving the use of online trackers.
The FTC has taken enforcement actions against at least two other telehealth providers - BetterHelp and GoodRx - plus mobile fertility app vendor Premom in cases involving those companies' use of tracking tools that shared consumer's sensitive health and personal information with third-party analytics and social media firms without individuals' consent.
The FTC alleged those companies' use of online trackers amounted to unfair acts or practices in violation of Section 5 of the FTC Act.
In the enforcement actions against GoodRx and Premom, the FTC also alleged the companies had violated the FTC's health data breach notification rule.
Earlier this month, the FTC finalized an order prohibiting data broker X-Mode and its successor Outlogic from sharing or selling any sensitive location data.
The action settled allegations that the company sold precise location data that could be used to track people's visits to sensitive locations such as medical and reproductive health clinics and places of worship.


This Cyber News was published on www.bankinfosecurity.com. Publication date: Tue, 16 Apr 2024 17:13:03 +0000


Cyber News related to FTC Bans Online Mental Health Firm From Sharing Certain Data

FTC Bans Online Mental Health Firm From Sharing Certain Data - The Federal Trade Commission has proposed restricting a mental telehealth service firm from sharing consumer data and requiring it to pay a $7 million penalty to settle allegations that the firm used online tracking tools to unlawfully disclose ...
8 months ago Bankinfosecurity.com
Data broker's "staggering" sale of sensitive info exposed in unsealed FTC filing - One of the world's largest mobile data brokers, Kochava, has lost its battle to stop the Federal Trade Commission from revealing what the FTC has alleged is a disturbing, widespread pattern of unfair use and sale of sensitive data without consent ...
1 year ago Arstechnica.com
The Technology That's Remaking OU Health into a Top-Tier Medical Center - This, along with our desire to replace our electronic health record and revenue cycle system, contributed to OU Health's decision to completely overhaul our IT infrastructure in support of our long-term organizational needs. OU Health strives to ...
1 year ago Feedpress.me
Randolph Health Announces Data Breach Stemming from Breached Employee Email Account - On April 10, 2024, American Healthcare Systems LLC d/b/a Randolph Health filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that an unauthorized party accessed a Randolph ...
8 months ago Jdsupra.com
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
2 months ago Aws.amazon.com
Hip Hip Hooray For Hipster Antitrust - The wheels of justice grind slowly, so many of the actions the FTC has brought are still pending. In tandem with the Department of Justice, it is suing over fake apartment listings, blocking noncompete clauses, targeting fake online reviews, and ...
10 months ago Eff.org
Building a Sustainable Data Ecosystem - Finally, I outline future research and policy refinement directions, advocating for a collaborative and responsible approach to building a sustainable data ecosystem in generative AI. In recent years, generative AI has emerged as a transformative ...
9 months ago Feeds.dzone.com
Teaching Digital Literacy and Online Safety - It is crucial for educators to prioritize teaching online safety to ensure that students are equipped with the necessary skills to protect themselves online. This article aims to explore the importance of teaching digital literacy and online safety, ...
1 year ago Securityzap.com
Budget cuts take a toll on IT decision makers' mental health - 60% of IT decision-makers agreed that budget cuts have negatively impacted their mental health and wellbeing, according to Integrity360. To add to that, 55% noted that the current economic climate has reduced access to mental health and wellbeing ...
11 months ago Helpnetsecurity.com
FTC fires 'shot across the bow' at automakers over connected-car data privacy - The Federal Trade Commission warned auto manufacturers on Tuesday that it is closely watching their data collection and sales activities, citing several recent enforcement actions which it suggested could apply to the industry's practice of sharing ...
7 months ago Therecord.media
1 million Corewell Health patients could be impacted by second data breach - GRAND RAPIDS, MI - About one million Corewell Health patients in southeast Michigan may have had their personal and medical information exposed in yet another nationwide data breach. Michigan Attorney General Dana Nessel on Tuesday, Dec. 26, ...
11 months ago Mlive.com
Cerebral to pay $7 million settlement in Facebook pixel data leak case - The U.S. Federal Trade Commission has reached a settlement with telehealth firm Cerebral in which the company will pay $7,000,000 over allegations of mishandling people's sensitive health data. Cerebral is a remote telehealth company that provides ...
8 months ago Bleepingcomputer.com
FTC Bars X-Mode from Selling Sensitive Location Data - Phone app location data brokers are a growing menace to our privacy and safety. Now the app tracks your every move and sends it to a broker, which then sells your location data to the highest bidder, from advertisers to police. The FTC's complaint ...
11 months ago Eff.org
FTC bans Rite Aid from using facial recognition surveillance for five years - Pharmacy chain Rite Aid is getting a timeout from AI facial recognition surveillance tech thanks to federal regulators. The U.S. Federal Trade Commission today announced a settlement with Rite Aid stating the chain recklessly deployed AI biometric ...
1 year ago Venturebeat.com
FTC wins first settlement banning sale of location data The Register - Infosec in brief The US Federal Trade Commission has secured its first data broker settlement agreement, prohibiting X-Mode Social from sharing or selling sensitive location data. In its complaint, the FTC accused X-Mode, which sold its assets to ...
11 months ago Go.theregister.com
BetterHelp Customers Begin Receiving Refund Notices From $7.8M Data Privacy Settlement, FTC Says - Many current and former BetterHelp customers have begun receiving refund eligibility notices spanning from a $7.8 million settlement reached with the online therapy provider last year over allegations that it shared sensitive health data with ...
7 months ago Securityweek.com
Role of Parents in Teaching Online Safety - In today's digital landscape, where children are increasingly exposed to the vast world of the internet, the role of parents in teaching online safety has become paramount. Parents should have regular conversations with their kids about the ...
1 year ago Securityzap.com
Cybersecurity for Homeschooling Parents: A Guide - With the increased reliance on technology and online tools, homeschooling parents must also address the pressing issue of cybersecurity. Whether it's securing tech tools, teaching safe online practices, or accessing valuable resources, this guide ...
11 months ago Securityzap.com
FTC bans data broker from selling Americans' location data - Today, the U.S. Federal Trade Commission banned data broker Outlogic, formerly X-Mode Social, from selling Americans' raw location data that could be used for tracking purposes. Under the order released today, the first time data brokers were barred ...
11 months ago Bleepingcomputer.com
An Age-by-Age Guide to Online Safety for Kids - Although the access to information, entertainment, and connection it offers is vital to modern life, safeguarding kids' online safety is crucial for their wellbeing, development, and future success in an increasingly digital world. In the following ...
11 months ago Cyberdefensemagazine.com
Tri-City Medical Center in Oceanside hit by cybersecurity attack - Tri-City Medical Center is diverting ambulance traffic to other hospitals Thursday as it copes with a cybersecurity attack that has forced it to declare "An internal disaster" as workers scramble to contain the damage and protect patient records. The ...
1 year ago Sandiegouniontribune.com
Don't Fall for the Latest Changes to the Dangerous Kids Online Safety Act - The authors of the dangerous Kids Online Safety Act unveiled an amended version this week, but it's still an unconstitutional censorship bill that continues to empower state officials to target services and online content they do not like. TAKE ...
10 months ago Eff.org
Addressing Cyberbullying and Online Harassment - Cyberbullying and online harassment have become significant concerns in today's digital landscape. By raising awareness, fostering digital literacy, and promoting a positive online culture, we can create safer digital spaces and effectively address ...
1 year ago Securityzap.com
Online Learning Security Best Practices - The rapid increase in remote learning has raised security concerns surrounding online learning platforms. The security of online learning platforms involves implementing robust measures to protect against unauthorized access and data breaches. By ...
11 months ago Securityzap.com
Online safety laws: What's in store for children's digital playgrounds? - As children's safety and privacy online becomes a matter of increasing urgency, lawmakers around the world push ahead on new regulations in the digital realm. Tomorrow is Safer Internet Day, an annual awareness campaign that started in Europe in 2004 ...
1 year ago Welivesecurity.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)