Developers and HIPAA

Record, transfer and store mobile inbuilt sensor data

Hi, For a mobile chatbot health app that reads, transfers and stores (within and outside mobile phone in a cloud based server) sensor generated time series data of patients/consumers activities, events, etc.. which includes all data that can be captured by a mobile phone's, accelerometer, light, other sensors without patient/consumer intervention, can such sensor generated data be classified as personal identifiable information or personal health information or personal data and governed by HIPAA or other federal personal data rules? What security and compliance safeguards (technical as well as process) need to be ensured of such sensor data while reading, transfer (in motion) and storage (at rest)?

Tags (If you have a multi-word tag, add a hyphen (-) between the words.)


2 votes
2 up votes
0 down votes
Question No. 74