CP
cyberpings
RegulationMEDIUM

EPIC Supports D.C. Personal Health Data Security Act

EPEPIC Electronic Privacy
EPICD.C. City CouncilPersonal Health Data Security Amendment Act
🎯

Basically, EPIC is helping to protect people's health data in D.C. by supporting a new law.

Quick Summary

EPIC testified in favor of a new law to protect health data privacy in D.C. This act aims to secure sensitive health information from misuse. Residents can voice their opinions until April 6. Stay informed and engaged in this important issue.

What Happened

On March 23, 2026, EPIC Senior Counsel Sara Geoghegan presented testimony before the D.C. City Council’s Committee on Health. The focus was on the Personal Health Data Security Amendment Act of 2025, which aims to enhance privacy protections for sensitive health information. This proposed legislation was introduced in December and seeks to establish critical safeguards for District residents.

The bill includes provisions that would prohibit geofencing around health service facilities and require organizations handling personal health data to publish clear privacy policies. Additionally, it mandates obtaining consent before collecting or disclosing any personal health data, as well as granting individuals the right to delete their data.

Who's Affected

This legislation is crucial for all District residents whose sensitive health information could be at risk. By establishing stronger privacy protections, the bill aims to empower individuals and ensure their data is handled responsibly. Health service providers and organizations that manage personal health data will also be impacted, as they will need to comply with these new regulations.

EPIC's testimony highlights the importance of these measures, emphasizing that the current notice-and-choice framework often fails to protect users effectively. Many individuals do not read lengthy privacy policies, leaving them vulnerable to data misuse.

What Data Was Exposed

The proposed amendment specifically targets sensitive health data, which includes any personal information related to an individual's health status, treatment, or medical history. By prohibiting geofencing and requiring clear privacy policies, the bill aims to prevent unauthorized tracking and ensure individuals are informed about how their data is used.

EPIC's recommendations also focus on data minimization, suggesting that companies should be accountable for the purpose of data collection rather than relying on complex privacy policies that users cannot easily understand.

What You Should Do

For residents in D.C., it is essential to stay informed about the progress of this legislation. Individuals can submit their testimony regarding the bill until April 6, allowing them to voice their opinions and concerns. Engaging in this process can help shape the future of data privacy in the region.

As the public hearing is available for viewing, residents are encouraged to educate themselves on the details of the proposed act. Supporting initiatives like EPIC's can contribute to a more secure and privacy-focused environment for personal health data management.

🔒 Pro insight: This amendment could set a precedent for health data privacy legislation in other jurisdictions, influencing national standards.

Original article from

EPIC Electronic Privacy · Caroline Anders

Read Full Article

Share

Related Pings

MEDIUMRegulation

Financial Privacy - EPIC Urges House Committee Action

EPIC is urging the House Financial Services Committee to strengthen financial privacy protections for consumers. They warn that financial data breaches can lead to scams and national security risks. The call for action emphasizes the need to maintain robust state privacy laws against potential federal preemption.

EPIC Electronic Privacy·
MEDIUMRegulation

Government Surveillance Reform Act - New Bipartisan Proposal

A new bipartisan bill aims to curb warrantless government surveillance. Introduced by key lawmakers, it seeks to protect Americans' privacy rights. This reform is crucial as FISA's Section 702 faces reauthorization this year.

EPIC Electronic Privacy·
HIGHRegulation

Meta and Google - Jury Finds Them Negligent in Addiction Case

A jury found Meta and Google negligent for creating addictive platforms for children. They face $3 million in damages, highlighting the need for accountability in tech. This case could reshape social media regulations and protect young users from harm.

EPIC Electronic Privacy·
HIGHRegulation

CISA Shutdown - Increasing Cyber Risks and Resignations

CISA's shutdown is raising cyber risks as 60% of its workforce is furloughed. This impacts critical infrastructure protection and may hinder talent recruitment. The agency's ability to respond to threats is severely constrained.

The Record·
HIGHRegulation

FCC Bans Foreign-Made Routers - Securing Supply Chain Risks

The FCC has banned foreign-made routers to secure the supply chain. This impacts consumers and businesses alike. Organizations must now manage their networks more effectively to mitigate risks.

SC Media·
HIGHRegulation

Regulation - Intel Chiefs Urge Clean 702 Extension Amid Deadline

Intel leaders are pushing for a clean extension of Section 702 before it expires in April. This law is vital for national security intelligence. However, privacy advocates warn it could lead to invasive surveillance practices. The outcome of this push could significantly impact civil liberties.

SC Media·