CT doliuwi ui claims denied that its health care software used by more than 200,000 people in the U.S. and Canada breached the U,D,C.A.A., or C.A.’s (Common Access Provisions) Privacy Shield requirements, the CTD said in a statement on Tuesday.
In a statement sent to CBS News, CTD’s privacy and data protection team said the company had no comment on the lawsuit.
The CTD claims the software is part of CTD Health Services, which is part-owned by CTD.
The lawsuit also names CTD for allegedly violating the Privacy Shield and Privacy Shield compliance requirements by selling the software to a third party, including the U of A, according to the CTDA statement.
CTD was not named in the lawsuit and has not responded to CBSNews.com’s requests for comment.
The privacy and Data Protection Shield compliance guidelines say CTD must provide users with an option to disable data collection.
In order to be eligible for Privacy Shield, CTI must meet certain minimum privacy requirements.
For instance, a provider must:• Have the necessary information about its users, including an opt-out box to opt out of sharing personal data• Provide an opt in mechanism to opt in to the use of data for marketing purposes• Provide information to allow users to manage their data collection and use• Ensure that the opt-in process is voluntary and non-reversible;• Identify and verify the identity of users who have opted-in and that they are not the owners of their data• Ensure the opt in process does not require any information about their identity that could identify them as a user of the service and cannot be used to identify them for other purposes, such as fraud protection or identity theft protection, including when the data is stored or accessed by a third parties• Maintain a data security program that complies with all applicable laws, regulations, and industry standards, and that protects the privacy of users of the CTI service• Maintains a data protection and data safety program that meets all applicable privacy and safety standards and safeguards data and data security of data and the CTDI’s users, customers, and CTDI customers, as well as all CTDI services and data used by CTDI.