Table 1.
Relevant laws and regulations relating to the safety, effectiveness, data protection, and privacy of mobile health apps and their data
| Country | Law/regulation | Covers |
|---|---|---|
| United States | Health Insurance Portability and Accountability Act (HIPAA)27 | Data security and privacy of health information, health information breaches |
| United States | Federal Food, Drug, and Cosmetic Act (FD&C Act)28 | Safety and effectiveness of medical devices (includes some mobile apps) |
| United States | Federal Trade Commission Act (FTC Act)29 | Privacy, data security, validity of claims about safety and effectiveness |
| United States | Federal Trade Commission’s Health Breach Notification Rule30 | Personal health information breaches |
| Europe | General Data Protection Regulation (GDPR)31 | Data protection, privacy, sharing of personal data outside the European Union/European Economic Area |
| Europe | Medical Device Regulation32 | Safety and effectiveness of medical devices (includes some mobile apps) |
| United Kingdom | Data Protection Act 201833 | Data protection and privacy |