Ah you’re thinking I’m reading your other comments to other people.
BTW HIPAA is for providers for their patients information handling. Once it’s in the person’s hands, it’s no longer under HIPPA and it no longer applies. If you decide to put your private medical information on a commercial advertisement board on a highway, and it’s not breaking laws to do with acceptable adcertisement (eg gore or smut) you’ll be able to do that to.
Basically theres no expectation for a individual person to adhere to HIPPA for their own personal information storage and it doesn’t apply.
My assumption with your lawyer comment, is this was a insurance or otherwise medical malpractice lawyer who might collect this information for their client cases, since without having client/patient requirements, HIPPA is irrelevant.
The moment a lawyer saves their medical records in a way that unintentionally and without their consent uploads them to OneDrive, they have a pretty solid case to charge Microsoft for a HIPAA violation
Lawyers, once they take off the suit and go home to their kids, are end users, not businesses. It would simply be easier for someone to initiate the lawsuit if they have a background in law.
We’re not talking about work computers. We’re talking about patients - end users who have downloaded documents from their doctor.
These people should not be blamed for using defaults, or for insecure actions happening from their inaction.
I said home computers multiple times and you again replied about work environments. You need to start paying attention.
Ah you’re thinking I’m reading your other comments to other people.
BTW HIPAA is for providers for their patients information handling. Once it’s in the person’s hands, it’s no longer under HIPPA and it no longer applies. If you decide to put your private medical information on a commercial advertisement board on a highway, and it’s not breaking laws to do with acceptable adcertisement (eg gore or smut) you’ll be able to do that to.
Basically theres no expectation for a individual person to adhere to HIPPA for their own personal information storage and it doesn’t apply.
My assumption with your lawyer comment, is this was a insurance or otherwise medical malpractice lawyer who might collect this information for their client cases, since without having client/patient requirements, HIPPA is irrelevant.
Are we talking about the same comment?
Lawyers, once they take off the suit and go home to their kids, are end users, not businesses. It would simply be easier for someone to initiate the lawsuit if they have a background in law.