Having consulted at several companies under HIPAA rules, let me chime in. It's
not as though there is someone standing behind you with a baseball bat just
waiting for the opportunity to swat your head.
Most of the practical rules are common sense.
Don't go peeking into personal data just
Good rules below. I implement them. But, then, I am a sysprog and don't
have any need to see any information about any of our clients. I also don't
have any real interest in their personal information (most humans are
_boring_). I don't "gossip". And I am an adherent of the NSA (Never Say
Everyone on the list, I apologize for my last two posts. I did not intend for
them
to go to the list, rather, I had intended to direct my replies directly to the
individuals.
I believe my concerns about HIPPAA (notice two A's zman) are correct, and
I felt that it was appropriate to express
