Wearable Data Privacy Laws Closing HIPAA Gaps
New state-level privacy laws are increasingly covering consumer health data from wearables not traditionally protected by HIPAA, according to a recent media analysis. As devices collect more sophisticated biometric data, regulations in states like California, Virginia, and Washington are imposing stricter compliance requirements, particularly for apps that sync with platforms like Apple HealthKit. This trend is driving a demand for more transparent, granular user consent mechanisms in health apps.
- Washington's My Health My Data Act, effective as of March 31, 2024, is a prime example of new state-level regulations, requiring entities to obtain explicit opt-in consent before collecting or sharing consumer health data. The law's broad definition of "consumer health data" includes precise location information that could indicate a person's attempt to access health services. - The global market for mobile health apps was valued at $40.65 billion in 2025 and is projected to grow to $113.2 billion by 2034. Investor focus has heavily shifted towards artificial intelligence; in 2025, U.S. digital health startups raised $14.2 billion, with AI-enabled companies securing 54% of that total funding. - Integrating multiple wearable APIs presents a significant technical challenge, as developers must normalize inconsistent data formats from cloud-based platforms like Fitbit and Garmin alongside device-local data from Apple HealthKit to make metrics usable for AI-driven personalization. - Building user trust is paramount, as a survey by the American Medical Association found that 92% of patients believe health data privacy is a right and that their information should not be for sale. Research shows that nearly 80% of users abandon healthcare apps within the first month, often due to a lack of trust in the app's design and data handling. - For early-stage fundraising, the average Series A deal size for AI-enabled digital health startups in the first half of 2025 was $24.4 million, a significant premium over the $15.6 million for non-AI companies. However, the funding is concentrated, with mega-deals of over $100 million accounting for 42% of all investment in 2025. - The longevity and "healthspan" sector is attracting significant venture capital from tech figures like Sam Altman, who provided $180 million in seed funding to Retro Biosciences. Startups in this space, such as NewLimit and BioAge Labs, are focusing on cellular reprogramming and using AI for drug discovery related to aging. - AI and machine learning are central to personalization in new health apps, with the healthcare AI market projected to reach $187 billion by 2030. These technologies analyze clinical data, medical imaging, and genetic profiles to deliver personalized treatment plans and predict health risks. - Beyond state laws, the Federal Trade Commission (FTC) is increasing enforcement through its Health Breach Notification Rule, which can apply to health apps not covered by HIPAA. This rule considers unauthorized data sharing with advertising or analytics partners a potential breach, requiring notification to consumers.
