Almost all of his questions are already answered by information released by Apple. If he's just doing his job, he could have don't some basic research to actually ask questions that you couldn't answer via a google search. It's pure grandstanding.
The act is HIPAA. No hippos were harmed in the making of this law.
What's covered by HIPAA is often exaggerated. To hear some tell it, saying "gesundheit" when someone sneezes is a violation. That said, if Apple does start storing or transmitting personal health data, they would very much be bound by HIPAA. In fact, protecting the privacy of electronic medical data records is the purpose of the law.
I mostly agree with you, but as the name suggests, it's aim is for health information to be portable (easily shared) and private. Health Insurance Portability and Accountability Act.
http://www.cms.gov/Regulations-and-...PAAGenInfo/index.html?redirect=/hipaageninfo/
The long and short of it is healthcare privacy is important and has big dollar attached for violations. The US federal govt can and does fine both the violator and also can fine anyone who should have known about it and didn't report said violations. These start in the neighborhood of $50,000 and go up. So just say if Apples Watch server were to somehow get hacked and it held 1 Million peoples privileged health information. We you get the idea, buy buy Apple.