HubBucket

HubBucket, Inc. ("HubBucket") adheres to all United States (U.S.) federal, New York State (NYS), California (state), and international Data Protection Laws, Regulations and Standards, which includes the European Union (EU) Data Protection Laws.

HubBucket is in compliance with the following laws, regulations, and standards, in addition to other U.S. Federal Laws:

• HIPAA - Health Insurance Portability and Accountability Act
• HITECH - Health Information Technology for Economic and Clinical Health Act
• ACA - Affordable Care Act / PPACA - Patient Protection and Affordable Care Act
• FDASIA - Section 618 of the Food and Drug Administration Safety and Innovation Act
• 21st Century Cures Act
• The New York Privacy Act - NY Senate Bill 224 - [ pdf document ]: NY Senate Bill 224
• New York State's Information Security Breach and Notification Act
• CCPA - California Consumer Privacy Act
• GDPR - General Data Protection Regulation
• FHIR - Fast Healthcare Interoperability Resources (standards)

Additional Information: https://www.healthit.gov/topic/laws-regulation-and-policy/health-it-legislation

Data Protection Law

Data Protection Law deals with the security of the electronic transmission of personal data. As of yet, the United States does not have any centralized, formal legislation at the federal level regarding this issue, but does insure the privacy and protection of data through the United States Privacy Act, the Safe Harbor Act and the Health Insurance Portability and Accountability Act.

U.S. Sectoral Approach

The United States follows what is referred to as a 'sectoral' approach to data protection legislation.

Under this approach, the laws of data protection and privacy rely on a combination of legislation, regulation, and self-regulation rather than governmental interference alone. Since the Clinton administration, the U.S. has followed a policy geared toward allowing the private sector to lead the way in data protection. This means that companies should implement their own policies, develop their own technology, and individuals should self-regulate to prevent the dissemination of their private data. Pursuant to this policy, the US has not yet developed a single, federal data protection law.

The European Union - EU Data Protection Laws

The European Union, on the other hand, has a unified data protection law called the Data Protection Directive. The EU's Data Protection Directive regulates the processing of personal data within the European Union and is an important component of the EU's privacy and human rights law. However, recognizing the need to modify this law to deal with globalization and technological developments, the European Union prepared a draft European General Data Protection Regulation that will supersede the Data Protection Directive, which is targeted for adoption in 2014 and to become effective in 2016. The existing Data Protection Directive, in simplest terms, asserts that personal data should not be processed at all, but if it is, it must fall within certain categories of transparency, legitimate purpose, and proportionality. The proposed law would expand the data protection regime currently in place to cover all international companies doing business in the EU.

The United States of America - U.S.A Ad Hoc Privacy Laws

Under the U.S. Sectoral approach, however, privacy legislation tends to be sparse and only adopted on an ad hoc basis, with legislation arising when circumstances require. These laws usually only apply to situations in which individuals would not be able to control the use of their data through self-regulations. Examples include the Video Privacy Protection Act of 1988, the Cable Television Protection and Competition Act of 1992, and the Fair Credit Reporting Act.

The United States of America - U.S.A Privacy Law Traditions

The reasoning behind the U.S. approach to privacy laws has as much to do with American laissez-faire economics as with its legal tradition. For example, while the U.S. has prized its right to free speech so dearly that the very first amendment to the U.S. Constitution protects it explicitly, the Constitution does not have an explicit right to privacy. The U.S. Supreme Court has found a right to privacy implied by the terms of other portions of the Constitution, and many states have explicit privacy rights in their state constitutions, but on a federal level, there is no express constitutional guarantee to privacy. As a result, there is similarly no constitutional framework upon which to build a single data privacy act, making the ad hoc approach much more compatible with the American system of government

For more information on data protection laws, please refer to the materials found below on this page. Moreover, should you need the assistance of an attorney to protect your rights as related to a data protection issue, whether as a person or entity that acquires and uses this data or as one who is afraid of the misuse of your personal information, you can find a list of attorneys in your area by visiting our Law Firms page.

Source: https://www.hg.org/data-protection.html