Atlanta-based LabMD has hit the Federal Trade Commission with a lawsuit seeking to stop what the company calls an "abuse of power and regulation" of patient information without proper authority, claiming only HHS can enforce patient privacy laws.
In August 2013, the FTC filed a compliant against LabMD alleging the medical testing laboratory exposed roughly 10,000 consumers' personal information including consumers' names, social security numbers, dates of birth, insurance provider information and standardized medical treatment codes.
LabMD filed its lawsuit on March 20 in
The lawsuit further alleges the FTC does not have the power to broadly regulate data security and that Congress delegated the authority to regulate protected health information to the HHS.
To stop the alleged abuse of power by the FTC, LabMD is seeking a declaration that the FTC lacks jurisdiction under Section 5 of the Federal Trade Commission Act to regulate PHI data-security practices.
More Articles on Protected Health Information:
4 Top Vulnerabilities Affecting PHI Security
8 Top Motivations Behind Intentionally Compromised PHI
10 Recent Healthcare Data Breaches