alt Hacker NewsI have gotten several notices of medical data being leaked over the last two years. I thought HIPPA law had very harsh fines for this, but I guess they just look the other way.
Replies
jimz • today at 6:03 PM
HIPAA doesn't have a private cause of action so if a violation happens, it's a wealth transfer to the government, it doesn't mean anything to you or any individual.
And most companies can simply price it in as cost of doing business at this point.
john_strinlai • today at 2:37 PM
unfortunately, even if the fine seems harsh, if it is less than the profits generated the fine is an operating expense and not a deterrent.
➕ show 1 reply
Seems like if you just disclose and make assurances that "you take security seriously" then it's fine.