News | Mobile Devices | April 25, 2016

FTC Creates Compliance Tool for Mobile Health App Developers

Tool and related business guidance designed to help developers stay compliant with federal and state privacy regulations

mobile health apps, FTC, compliance tool, business guidance, privacy

April 25, 2016 — The Federal Trade Commission (FTC) announced that it has created a Web-based guidance tool for developers of health-related mobile applications (health apps). FTC did not take this action alone, but rather developed the tool in conjunction with the Department of Health and Human Services’s (HHS) Office of the National Coordinator for Health Information Technology (ONC), Office for Civil Rights (OCR), and the U.S. Food and Drug Administration (FDA). 

FDA released a seminal guidance document on mobile medical apps early last year. In its guidance document, FDA addresses, among other things, those apps it intends to regulate as medical devices under the Federal Food, Drug, and Cosmetic Act (FD&C Act) and those for which the agency intends to exercise its enforcement discretion. OCR has also recently issued guidance in this area, providing examples of scenarios where the Health Insurance Portability and Accountability Act (HIPAA) regulations might apply to health information created, managed or organized through the use of health apps.

The FTC’s new health apps tool asks developers a series of high-level questions about the nature of the app, including questions about its function, the data it collects and the services it provides to users.  These questions include the following:

  • Do you create, receive, maintain or transmit identifiable health information?;
  • Are you a healthcare provider or health plan?;
  • Do consumers need a prescription to access your app?;
  • Are you developing this app on behalf of a HIPAA-covered entity?;
  • Is your app intended for use in the diagnosis of disease or other conditions, or in the cure, mitigation, treatment or prevention of disease?;
  • Does your app pose “minimal risk” to a user?;
  • Is your app a “mobile medical app”?;
  • Are you a nonprofit organization?; and
  • Do you offer health records directly to consumers (or do you interact with or offer services to someone who does)?

Based on the answers to these questions, the tool will point the app developer toward detailed information about certain federal laws that might apply to the app, including the FTC Act, the FTC’s Health Breach Notification Rule, HIPAA and the FD&C Act.

Simultaneous with the release of the guidance tool, the Commission also issued a business guidance aimed at helping health app developers comply with the FTC Act by building privacy and security into their apps. Beyond the laws identified above, FTC notes in its business guidance that health apps could be subject to, among other things, the Children’s Online Privacy Protection Rule; the Gramm-Leach-Bliley Act’s Safeguards Rule and Privacy Rule; myriad state laws; and basic truth-in-advertising and privacy principles.

Given the proliferation of health apps, developers can expect increasing federal and state scrutiny over these products.  The veritable alphabet soup of potentially-applicable laws require that developers maintain a sophisticated understanding of both existing requirements and new requirements that are sure to come online over the coming months and years.

For more information: www.venable.com

Related Content

Lung and respiratory health pioneer paves way for more precise care of complex respiratory conditions
News | Artificial Intelligence | September 25, 2020
September 25, 2020 — VIDA Diagnostics, Inc. announced that it has received 510(k) clearance from the Food and Drug Ad
Of all the buzzwords one would have guessed would dominate 2020, few expected it to be “virtual”. We have been virtualizing various aspects of our lives for many years, but the circumstances of this one has moved almost all of our lives into the virtual realm.

Getty Images

Feature | Radiology Education | September 18, 2020 | By Jef Williams
Of all the buzzwords one would have guessed would dominate 2020, few expected it to be “virtual”.
As the silos of data and diagnostic imaging PACS systems are being collapsed and secured, the modular enterprise imaging platform approach is gaining significance, offering systemness and security
Feature | Coronavirus (COVID-19) | September 18, 2020 | By Anjum M. Ahmed, M.D., MBBS, MBA, MIS
COVID-19 is now everywhere, and these are the lo
Cloud and cloud-native architecture is the future for computing solutions in EI applications

Getty Images

Feature | Enterprise Imaging | September 18, 2020 | By Henri “Rik” Premo
With over five years of presence in the rapidly expanding...
News | Artificial Intelligence | September 16, 2020
September 16, 2020 — Konica Minolta Healthcare Americas, Inc.
Change Healthcare announced innovative new artificial intelligence (AI) models, trained by expert physicians, which extract meaningful diagnostic information from text in EHRs. The first application of this technology will be within the InterQual AutoReview solution, which automates medical necessity reviews using real-time data from EHRs.
News | Artificial Intelligence | September 14, 2020
September 14, 2020 — Change Healthcare announced innovative new...
All intensive care unit equipment, including ventilators, pumps, and monitoring devices, as well as the point-of-care magnetic resonance image operator and bedside nurse, remained in the room. All equipment was operational during scanning.

All intensive care unit equipment, including ventilators, pumps, and monitoring devices, as well as the point-of-care magnetic resonance image operator and bedside nurse, remained in the room. All equipment was operational during scanning. Image courtesy of JAMA Neurology

News | Magnetic Resonance Imaging (MRI) | September 11, 2020
September 11, 2020 — A portable, low-field...
The National Imaging Informatics Course-Radiology (NIIC-RAD) Term 1 will be held online September 28 - October 2, 2020. NIIC-RAD is made possible through a partnership between the Radiological Society of North America (RSNA) and the Society for Imaging Informatics in Medicine (SIIM)

Getty Images

News | Radiology Education | September 11, 2020
September 11, 2020 — The...