If you’re in the process of developing a health-related mobile app, what tools are essential to your success? The answer, according to some entrepreneurs, is innovative code, a great marketing plan, and the number of a take-out that delivers until 2AM. But have you given much thought to legal compliance? A new multi-agency interactive tool may help you determine which federal laws apply to your product. What’s more, the FTC just issued a new publication with guidance on building privacy and security into health apps.
HIPAA, the FTC Act, the Health Breach Notification Rule, and the Federal Food, Drug, and Cosmetic Act. There’s a lot for health app developers to keep in mind. But by answering 10 yes-or-no questions in the Mobile Health App Interactive Tool, you can streamline your compliance efforts. It’s a collaboration of the FTC, HHS’s Office of the National Coordinator for Health Information Technology, HHS’s Office for Civil Rights, and the FDA.
What’s the next step? If you’re covered by the FTC Act, Mobile Health App Developers: FTC Best Practices is a must-read. But regardless of the nature of your business, there are nuggets to glean from the brochure. Building on the principles of the FTC’s Start with Security initiative, the new publication offers advice tailored for health app developers. It boils down to eight best practices:
- Minimize data.
- Limit access and permissions.
- Keep authentication in mind.
- Consider the mobile ecosystem.
- Implement security by design.
- Don’t reinvent the wheel.
- Innovate how you communicate with users.
- Don’t forget about other applicable laws.
Before releasing your health app, use the interactive tool to determine the laws that may apply and consider how you can incorporate the nuts-and-bolts guidance in Mobile Health App Developers: FTC Best Practices.