| ▲ | tmaly 7 hours ago | |||||||
I have gotten several notices of medical data being leaked over the last two years. I thought HIPPA law had very harsh fines for this, but I guess they just look the other way. | ||||||||
| ▲ | SoftTalker 7 hours ago | parent | next [-] | |||||||
Seems like if you just disclose and make assurances that "you take security seriously" then it's fine. | ||||||||
| ▲ | jimz 3 hours ago | parent | prev | next [-] | |||||||
HIPAA doesn't have a private cause of action so if a violation happens, it's a wealth transfer to the government, it doesn't mean anything to you or any individual. And most companies can simply price it in as cost of doing business at this point. | ||||||||
| ▲ | john_strinlai 7 hours ago | parent | prev [-] | |||||||
unfortunately, even if the fine seems harsh, if it is less than the profits generated the fine is an operating expense and not a deterrent. | ||||||||
| ||||||||