Skip to main content

Think your company doesn't make any privacy claims? Think again — and reread your privacy policy to make sure you're honoring the promises you've pledged. Consumers care about the privacy of their personal information and savvy businesses understand the importance of being clear about what you do with their data.

Plain Language Guidance

App developers: How does your app size up? Have your built security in from the start? The FTC has a dozen tips to help you develop kick-app security for your product.

Advice for businesses about building and keeping security into products connected to the Internet of Things, including proper authentication and access control, secure data management, and the importance of communicating with users effectively.

Does your business collect, use, or share consumer health information? When it comes to privacy and security, consider the Health Insurance Portability and Accountability Act; the HIPAA Privacy, Security, and Breach Notification Rules; the FTC Act and the FTC’s Health Breach Notification Rule.

Guidance for business on complying with the FTC’s Health Breach Notification Rule. Who’s covered by the Rule and what companies must do if they experience a breach of personal health records.

Under the FTC's Health Breach Notification Rule, companies that have had a security breach must: 1. Notify everyone whose information was breached; 2. In many cases, notify the media; and 3. Notify the FTC.

Under the FTC's Health Breach Notification Rule, companies that have had a security breach must: 1) notify everyone whose information was breached, 2) notify the FTC, and 3) in some cases, notify the media.

Attention app developers! Basic truth-in-advertising and privacy principles apply to your product. It’s important to give the straight story about what your app can do and be transparent about your privacy practices. This start-from-scratch publication from the FTC reminds you to consider your choices from the user's perspective.

Explains how medical identity theft occurs, and how health care providers and insurers can minimize the risk and help their patients if they’re victimized.

When developing a health app, sound privacy and security practices are key to consumer confidence. Here are some best practices to help you build privacy and security into your app. These practices also can help you comply with the FTC Act and other federal laws and regulations.

You’re developing a health app for mobile devices and you want to know which federal laws apply. Check out this interactive tool.

Resources

Mobile Health App Developers: FTC Best Practices







Start with Security: A Guide for Business offers tips for any business wanting to implement sound data security. For health app developers, here’s tailored advice and additional questions to ask. Minimize data. Limit access and permissions. Keep authentication in mind. Consider the mobile ecosystem...




Mobile Health App Interactive Tool







Privacy and security are important considerations for any app—and especially apps that collect and share consumers’ health information. As you design, market, and distribute your mobile health app, think about which U.S. federal laws may apply. Check out this interactive tool to help you navigate...