The Role of Congressional Hearings in Shaping Health Tech Policy

Congressional hearings serve as a critical lever for oversight and policy development in the complex intersection of healthcare and technology. These hearings provide a formal platform where lawmakers can examine the current state of digital health infrastructure, identify gaps in regulation, and propose legislative remedies. By bringing together experts from government agencies, the private sector, advocacy groups, and academia, hearings ensure that a wide range of perspectives inform the legislative process. The resulting discussion often shapes funding priorities, federal agency guidance, and the legal framework that governs data sharing, interoperability, and patient privacy.

Over the past decade, the pace of technological change in healthcare has accelerated dramatically. Electronic health records (EHRs), telehealth platforms, artificial intelligence‑driven diagnostics, and wearable health devices have all become mainstream. Yet the legal and regulatory environment has often lagged behind. Congressional hearings function as a public forum where these tensions are aired, and where the need for updated policies is articulated. For example, the Senate Committee on Health, Education, Labor, and Pensions (HELP) has held multiple hearings on the 21st Century Cures Act and its implementation, while the House Energy and Commerce Committee frequently examines data privacy and cybersecurity in health systems. These hearings not only inform legislation but also signal to the market and to regulators which issues are seen as priorities on Capitol Hill.

Data Privacy and Security: A Central Concern

Protecting patient health information has been a recurring theme in recent hearings. High‑profile data breaches at major health systems and business associates have exposed millions of records, prompting lawmakers to question whether existing laws like HIPAA are adequate. During several oversight hearings, the Government Accountability Office (GAO) has testified that HIPAA enforcement actions remain relatively rare and that penalties may not be sufficient deterrents. As a result, recent legislative proposals have sought to strengthen notification requirements, increase civil monetary penalties, and extend privacy protections to data collected by wearable devices and direct‑to‑consumer health apps.

Another area of scrutiny is the secondary use of health data for research and commercial purposes. Patient advocacy groups have emphasized the importance of informed consent and transparency, especially when de‑identified data is used to train artificial intelligence models. Witnesses from organizations such as the American Civil Liberties Union have urged Congress to close gaps that allow health data to be shared with technology platforms without explicit patient authorization. In response, some hearings have explored the concept of a federal data privacy law that would pre‑empt state patchworks—like the California Consumer Privacy Act (CCPA)—while still maintaining strong health‑specific protections. The debate continues, but hearings provide a critical space for forging bipartisan consensus.

Interoperability and Data Sharing Standards

Seamless data sharing across healthcare systems remains a persistent goal and a pain point. Congressional hearings have examined the progress of interoperability mandates under the 21st Century Cures Act, which requires that health IT developers provide open application programming interfaces (APIs) and not engage in information blocking. The Office of the National Coordinator for Health Information Technology (ONC) has testified about its implementation of the United States Core Data for Interoperability (USCDI) standard and the Trusted Exchange Framework and Common Agreement (TEFCA). These efforts aim to create a nationwide network for health data exchange, allowing patients and providers to access records regardless of where care was delivered.

Yet challenges remain. In hearings, experts from large health systems and smaller rural hospitals have highlighted the cost and complexity of adopting new standards, as well as the uneven adoption among vendors. The ONC has been pressed on enforcement of information blocking provisions, which prohibit practices that unreasonably limit the exchange of electronic health information. Testimony from HHS Inspector General officials has detailed ongoing investigations into alleged blocking by hospitals and EHR vendors. These sessions have spurred calls for clearer guidance and stronger penalties. At the same time, patient representatives argue that interoperability is meaningless without usability—that data must be presented in a format that patients and clinicians can actually use to make decisions.

Emerging Technologies Under Scrutiny

Artificial Intelligence and Machine Learning

AI holds enormous promise in healthcare—from faster radiology reads to predicting patient deterioration. But hearings have revealed significant concerns about bias, transparency, and accountability. During a 2023 hearing on AI in healthcare, the FDA testified about its current framework for reviewing AI‑based medical devices, noting that the agency has authorized over 500 such algorithms, many of which continue to learn and change after deployment. Lawmakers asked pointed questions about how the agency can ensure the safety of “locked” versus “adaptive” AI models, and whether premarket review is sufficient when algorithms are updated over time. Witnesses from academic medical centers stressed the need for real‑world monitoring and for diverse training data that reflects the populations the algorithms will serve.

Another recurring theme is the role of AI in clinical decision support. During hearings, the American Medical Association has advocated for clear regulatory guardrails that distinguish between AI that assists clinicians and AI that autonomously makes diagnostic decisions. Meanwhile, patient safety organizations have called for the creation of a national adverse event reporting system for AI‑related errors. These discussions have led to draft legislation that would require developers to register AI algorithms, perform bias testing, and submit post‑market surveillance plans.

Telemedicine and Remote Care

The COVID‑19 pandemic dramatically expanded telemedicine, and congressional hearings have examined whether temporary waivers should become permanent. Key topics include reimbursement parity, licensure portability, and the quality of care delivered via telehealth. During a hearing before the House Ways and Means Committee, the Department of Health and Human Services (HHS) confirmed that utilization of telehealth remains far above pre‑pandemic levels, particularly for mental health services. However, concerns about fraud and the potential for overprescribing controlled substances have been raised. The Drug Enforcement Administration has testified about its efforts to craft rules for remote prescribing of buprenorphine and other controlled medications. Hearings have also highlighted disparities in broadband access, which limit telehealth adoption in rural and underserved communities. Several bills have been introduced to expand funding for broadband infrastructure and to require that telehealth platforms offer audio‑only options when video is not feasible.

Wearable Devices and Consumer Health Technology

Smartwatches, continuous glucose monitors, and other wearables generate a torrent of health data that sits largely outside the traditional healthcare system. Congressional hearings have explored the regulatory status of these devices. The FDA has clarified that many wearables intended for general wellness do not require premarket review, but those that claim to diagnose or treat a condition must go through the agency’s clearance process. Lawmakers have expressed concern about consumers relying on unvalidated algorithms for health decisions. Meanwhile, the Federal Trade Commission has testified about its authority to take action against deceptive health claims made by device makers. As the market grows, hearings are likely to consider whether a dedicated regulatory category for consumer health technology is needed.

Stakeholder Perspectives and Testimony

The diversity of voices heard in congressional hearings reflects the multifaceted nature of health technology policy. Below are key stakeholder groups and the perspectives they typically bring:

  • Healthcare providers and hospital associations – Groups like the American Hospital Association (AHA) often testify about the operational challenges of implementing new data‑sharing standards and the need for federal funding to support health IT upgrades. They also highlight the burden of regulatory compliance and workforce shortages in health informatics.
  • Technology companies and EHR vendors – Companies such as Epic, Cerner, and large cloud providers advocate for policies that encourage innovation while warning against overly prescriptive rules that could stifle competition. They often emphasize the importance of private‑sector leadership in developing interoperability solutions.
  • Patient advocacy groups – Organizations representing patients with chronic conditions emphasize the need for better data access, transparency about how health data is used, and protection against discrimination based on genetic information. They frequently call for stronger enforcement of existing laws and for including patient representatives in standard‑setting bodies.
  • Regulatory agencies – The FDA, ONC, HHS, and the Federal Trade Commission provide technical expertise and updates on their current activities. Their testimony often shapes the legislative language that results from hearings.
  • Academic and research institutions – Universities and think tanks contribute evidence on the effectiveness of health IT interventions, disparities in digital health access, and the potential risks of emerging technologies. Their research helps ground policy debates in data.

Hearings also include public witness panels where individual patients, clinicians, and privacy experts share personal stories. These narratives can be powerful tools for illustrating why policy changes matter. For instance, testimony from a patient whose medical records were leaked in a data breach, or from a rural physician who struggled to access critical lab results via an incompatible EHR, can galvanize legislative action.

Legislative and Regulatory Impacts

Congressional hearings do not merely generate discussion; they directly influence legislation and agency rulemaking. The 21st Century Cures Act, passed in 2016, was shaped by years of hearings that identified information blocking and lack of interoperability as major obstacles. Similarly, the Cures 2.0 bills and the proposed Health Data Use and Privacy Commission have roots in committee hearings. After hearings highlighted gaps in federal cybersecurity preparedness for the healthcare sector, Congress passed the Health Care Cybersecurity Act of 2024, which required HHS to develop voluntary cybersecurity performance goals and to provide technical assistance to small and rural hospitals.

Hearings also affect the regulatory agenda. The ONC’s 2024 Interoperability Rule, which mandates that payers and providers share data via FHIR‑based APIs, drew on testimony from multiple hearings where patient advocates and physicians demanded faster action. Likewise, the FDA’s updated guidance on AI‑enabled medical devices, released in 2024, incorporated feedback from lawmakers and experts who participated in hearings about adaptive algorithms. Agency officials often commit to future actions during hearings—such as issuing guidance or launching a pilot program—and are later held accountable for those commitments in subsequent oversight sessions.

Future Directions: Ethics, Equity, and Cybersecurity

As healthcare technology continues to converge with consumer technology, congressional hearings will need to grapple with new ethical dilemmas. Algorithmic bias, for example, is an issue that cuts across AI, wearables, and telemedicine. During a 2024 joint hearing, witnesses presented evidence that some AI‑driven triage tools systematically under‑triage Black patients, while others over‑triage patients based on flawed race adjustments. Lawmakers are considering whether to require impact assessments for any AI used in clinical settings and whether to prohibit the use of certain variables like race and ZIP code in algorithms unless they are validated.

Health equity is another priority. Broadband access, digital literacy, and device affordability all affect who can benefit from digital health advances. Hearings have examined the “digital divide” in telehealth, with representatives from tribal health systems and federally qualified health centers urging Congress to fund broadband deployment in rural and underserved areas. Additionally, the role of social determinants of health in data collection and sharing is gaining attention—but also raises concerns about privacy if granular social data is linked to medical records.

Finally, cybersecurity remains a top concern. Ransomware attacks on hospitals have doubled since 2021, and hearings have focused on whether the healthcare sector should adopt mandatory cybersecurity standards, similar to the financial sector. The Cybersecurity and Infrastructure Security Agency (CISA) has testified about its efforts to share threat intelligence with hospitals, but lawmakers have questioned whether voluntary incentives are sufficient. Expect more hearings in the coming years that debate the trade‑offs between innovation, cost, and protection.

In summary, congressional hearings are an indispensable mechanism for steering the future of healthcare technology and data sharing. They surface problems, surface evidence, create political pressure, and ultimately produce laws and regulations that shape every aspect of digital health. As technology evolves, these hearings will remain a vital forum for balancing the benefits of innovation with the imperatives of privacy, equity, and security.