Just as pharma marketers have started getting their heads around the complexity of data privacy laws , AI regulation is right around the corner. No federal law overseeing AI in healthcare currently exists. But several states have launched new laws that could have an impact on how pharma marketers implement the technology throughout the marketing journey — from chatbots and digital avatars to personalization and targeting.

ALBANY, New York — Gov. Kathy Hochul wants to work with House Republicans to ensure noncitizens and low-income New Yorkers continue to receive health care coverage beyond July. Finding any takers inside the Empire State’s GOP delegation hasn’t been easy. At stake is health care for roughly 1.5 million New Yorkers who may lose coverage following approval of President Donald Trump’s sweeping tax-and-spending package .

A bill that would require Iowa’s medical facilities to inform regulators of any serious medical errors is again facing opposition from the state’s hospitals. Senate File 2185 would require Iowa hospitals, ambulatory surgical centers and birth centers to report any “serious reportable events” — sometimes called “never events” — to the Iowa Department of Inspections, Appeals and Licensing.

Healthcare data breaches discovered in calendar year 2025 that affected fewer than 500 individuals must be reported to the HHS’ Office for Civil Rights by March 1, 2026. The HIPAA Breach Notification Rule requires data breaches affecting 500 or more individuals to be reported to OCR within 60 days of the discovery of a data breach. Individuals must also be notified within 60 days, and a notice must be submitted to prominent media outlets where the affected individuals are lo

(The Center Square) — A coalition of New York business groups is urging Gov. Kathy Hochul to veto a "restrictive" data privacy bill they say would drive up costs for health care consumers. The New York Health Information Privacy Act calls for extending the state's existing protections for personal health information beyond the scope of federal HIPAA regulations. The legislation would make it illegal to sell an individual’s regulated health information without their consent an

Almost half of US states have passed comprehensive consumer data privacy protections that go beyond federal health privacy rules, known as Health Insurance Portability and Accountability Act (HIPAA). The legislative push aims to close a widening security gap as more care, communication, and personal data move online — and beyond HIPAA’s limited scope. While the laws are designed to protect consumers, they’re also reshaping expectations around how healthcare organizations sho

Wearables have become the wellness consumer’s most trusted sidekick and a major opportunity for brands that rely on real-time metrics and insights, but the data behind those devices still lives in a gray zone, and Washington has noticed. Senate Health, Education, Labor and Pensions Committee chair Bill Cassidy, MD (R-La.) has introduced the Health Information Privacy Reform Act, a bill that would bring new privacy standards to smartwatches, rings, trackers and health apps tha

On November 4, 2025, Senator Bill Cassidy (R-LA), chair of the Senate Health, Education, Labor, and Pensions (“HELP”) Committee, introduced the Health Information Privacy Reform Act (“HIPRA”). HIPRA seeks to extend protections similar to those provided under the Health Insurance Portability and Accountability Act of 1996, as amended, and its implementing regulations (collectively, “HIPAA”) to certain health information collected by entities not currently regulated by HIPAA.

I lead PR and communications at Municorn, where brand trust meets data protection. If customers doubt their health information is safe, there’s no brand to build. I’ve seen how breaches erode trust overnight. For privacy-sensitive apps used in healthcare workflows, the proposed HIPAA Security Rule is not just compliance—it’s a chance to strengthen reputation and confidence.

HELENA — The office of Montana State Auditor James Brown, the state's commissioner of securities and insurance, has launched an investigation into Blue Cross Blue Shield of Montana (BCBSMT) following a major data breach. According to the Auditor’s Office, the breach puts the personal and medical information of up to 462,000 Montana customers at risk.

Pennsylvania lawmakers want to make sure humans are still involved in health care decisions that rely on artificial intelligence. Bipartisan legislation introduced this month in the House of Representatives would require health care providers and insurers to be transparent about how they use artificial intelligence and ensure that humans review all assessments made by AI. Providers and insurers also would be mandated to provide evidence that their uses of AI minimize bias an

A 2022 Ponemon Institute survey found that nearly 9 in 10 healthcare organizations experienced an average of 43 cyberattacks in a...

The White House’s lead regulatory office is reviewing a proposed rule that would upgrade the cybersecurity protections required under the Health Insurance Portability and Accountability Act (HIPAA). The White House Office of Information and Regulatory Affairs (OIRA) received the proposed rule on Oct. 18. The changes to the HIPAA security rule will “improve cybersecurity in the health care sector by strengthening requirements for HIPAA regulated entities to safeguard electroni