Existing law, the Confidentiality of Medical Information Act, generally prohibits a provider of health care, a health care service plan, or a contractor from disclosing medical information regarding a patient of the provider of health care or an enrollee or subscriber of a health care service plan without first obtaining an authorization, except as otherwise specified. Existing law defines "medical information" for purposes of these provisions to mean certain individually identifiable health information in possession of or derived from a provider of health care, among others. Existing law makes a violation of these provisions that results in economic loss or personal injury to a patient punishable as a misdemeanor. This bill would define "personal health record information" for purposes of the act to mean individually identifiable information, in electronic or physical form, about an individual's mental or physical condition that is collected by a product or device, commercial internet website, online service, or mobile application that is used by an individual and that is specifically designed to collect and transmit, directly or indirectly, the individual's personal health record information through a direct measurement of an individual's mental or physical condition or through user input regarding an individual's mental or physical condition. The bill would provide that a business that offers a personal health record system to a consumer, shall not knowingly use, disclose, or permit the use or disclosure of personal health record information without a signed authorization, as specified. The bill would also prohibit a recipient of personal health record information pursuant to an authorization from further disclosing the health record information unless in accordance with a new authorization, as specified. The bill would make a violation of these provisions subject to specified administrative fines and civil penalties.
In committee: Held under submission.
From committee: Amend, and do pass as amended and re-refer to Com. on APPR. (Ayes 8. Noes 1.) (July 14).
From committee: Do pass and re-refer to Com. on HEALTH. (Ayes 9. Noes 2. Page 1718.) (June 29). Re-referred to Com. on HEALTH.
From committee chair, with author's amendments: Amend, and re-refer to committee. Read second time, amended, and re-referred to Com. on RLS.
In Senate. Read first time. To Com. on RLS. for assignment.
Read third time. Passed. Ordered to the Senate. (Ayes 75. Noes 0. Page 1033.)
Read second time. Ordered to Consent Calendar.
From committee: Do pass. To Consent Calendar. (Ayes 11. Noes 0.) (April 8).
Read first time.
From printer. May be heard in committee March 22.
Introduced. To print.
|Bill Text Versions||Format|
|02/19/21 - Introduced|
|06/21/21 - Amended Senate|
|07/16/21 - Amended Senate|
|04/06/21- Assembly Privacy and Consumer Protection|
|06/25/21- Senate Judiciary|
|07/12/21- Senate Health|
|08/13/21- Senate Appropriations|
Data on Open States is updated periodically throughout the day from the official website of the California State Legislature.
If you notice any inconsistencies with these official sources, feel free to file an issue.