Bill is right. I should have explained HIPAA. Our organization works with people with a wide range of medical issues. All of our reports would have some type of personal health information in it. Between Federal/state regulations and any resulting court cases, it could be very expensive for us if this information would get out and it could be shown to have come from us. That is why I need to control where this info goes and who can see it. Even in our own organization on a daily basis I have to demonstrate how access the data is limited to only the people who need to see it. The purpose is to keep information about people private. Every insurance company, hospital, and medically related practice in the US deals with the same issue. It is just part of the job.
Tom Frederick Jacksonville, Illinois ________________________________ From: [email protected] [mailto:[email protected]] On Behalf Of Bill Downall Sent: Wednesday, March 11, 2009 1:00 PM To: RBASE-L Mailing List Subject: [RBASE-L] - Re: Saving PDFs to Database Each provider, usually with their own lawyers and risk management people, interprets the law and decides how to implement appropriate protections. I'm with Tom. A lot fewer people are self-taught at hacking an R:BASE Grant-Revoke protected, encrypted database, than are self-taught at hacking the Windows file system. Bill On Wed, Mar 11, 2009 at 1:52 PM, MDRD <[email protected]> wrote: But the VA lost a HD with all the doctors info on it?
