The AAMC responded on April 7 (PDF) to a congressional request for information on data privacy and security from House Energy and Commerce Committee Chair Brett Guthrie (R-Ky.) and Vice Chair John Joyce (R-Pa.). The response demonstrated support for a comprehensive federal data privacy and security framework that protects individuals while supporting health care, education, and research.
The AAMC emphasized the need to account for the unique characteristics of academic medicine and vital role it plays in responsibly managing personal health data. In its comments, the AAMC urged policymakers to align any new requirements with existing health privacy laws, such as the Health Insurance Portability and Accountability Act (HIPAA, P.L. 104-191), and to ensure a scalable, risk-based approach that reflects an entity’s size and risk profile. The association also highlighted the importance of allowing continued use of de-identified health data to advance biomedical research and improve care, calling for strong baseline protections for sensitive personal information. The AAMC reiterated its support for consistent federal standards that provide clarity for consumers and reduce compliance burdens, urging lawmakers to avoid a patchwork of conflicting state laws.