Depends on what they want to do. HIPAA is a big deal in my shop. If they just want SMF data, I normally run the job to create the dataset for them and send it to them. No big deal about that. If they want a "sysprog" level access (which has never happened), well, I'll do what I'm told. But if it were me, I'd tell them to get a court order, siting HIPAA. And get lots of legal documents signed by somebody like the president or other high officer of the company. Maybe even many somebodies.
On Thu, 2011-12-29 at 20:03 -0600, Brian Westerman wrote: > I'm sorry Schmuel, normally I agree with your point on things, but I > really have to disagree here. It's not like I have no experience with > other sites, we have hundreds of clients, and I have been to well over > 80% of them in person, and I can state without much worry that the > percentages would not be on my side that the far greater percentage > (approaching 100%) would never agree to giving a vendor access to > their site to "check up" on them. > > Even when we go to a site as the "IBM" people, they go way out of > their way to make sure that we stay focused on the problem and don't > just "look around". As a "non IBM" vendor, it would be even less > likely that the client would just open their site to us. > > In this case I hardily agree with the view that the the vendor would > be told to go pound salt. Imagine the security issues that would have > to be dealt with to just give them an ID that has the capability to > check. > > Brian -- John McKown Maranatha! <>< ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
