WingNews logo WingNews
top | item 8874830

(no title)

vasquez | 11 years ago

No thanks. I can see this kind of legislation turning any online presence into a horribly expensive bureaucratic nightmare while accomplishing fuck-all security-wise. (At best.. Given current governments' track record, any privacy act would be all about stomping on people's privacy.)

I'd rather not be subjected to (and pay for) more security theater, or see every small business out there drown in a paper mill suitable for the fortune 500s.

We are already liable for any gross misconduct.

discuss

order

drzaiusapelord|11 years ago

Do you honestly think patient information would be safer without HIPAA?

Do you honestly think the EU privacy laws that we don't have in the US aren't doing anything?

Its incredible how the anti-regulation types think everything is fine and that no regulation has ever worked.

shaftoe|11 years ago

As someone who has worked in multiple regulated industries, including with HIPAA, what they accomplish is rarely the intended goals.

Regulation is a weapon to be used by powerful interests to bash competitors. For example, utilities love regulation as it gives them a de-factor monopoly and predictable income.

The medical industry widely ignores HIPAA in a holistic way. Ask any practice you visit about their handling of medical records, IT security practices, etc. Heck, ask them if they still use Windows XP.

dragonwriter|11 years ago

> Do you honestly think patient information would be safer without HIPAA?

Quite possibly; the privacy and security portions of HIPAA were included to mitigate the risks associated with the push for electronic systems and standardized data that were more central to HIPAA -- and the enhanced privacy and security features added later in amendments to HIPAA were furthering that in the context of increased standardization and automation that was being promoted in the same legislation; without HIPAA, you might not have as much formal protection of patient data, but you also might have a lot less data in forms that were easy to compromise en masse in the first place.

(Of course, that would also have consequences for administrative efficiency and quality of care, and without HIPAA and the related subsequent acts that included those patient protections as mitigations to potential negative effects of their primary functions, the US might have the least efficient health care system in the developed world by an even larger margin than it currently does, which, even if HIPAA does net some increased risk to patient information, might not be worth the cost.)

dragonwriter|11 years ago

> I can see this kind of legislation turning any online presence into a horribly expensive bureaucratic nightmare while accomplishing fuck-all security-wise.

One of the sources of a push for federal standards is frustration with multiple conflicting state standards doing the same thing.