One Aging Geek

Wednesday, June 08, 2005

HIPAA penalties gutted

Good article from Bruce Schneier on yet another pro-corporation, anti-individual, ruling by the current administration. 

In the U.S., medical privacy is largely governed by a 1996 law called HIPAA. Among many other provisions, HIPAA regulates the privacy and security surrounding electronic medical records. HIPAA specifies civil penalties against companies that don't comply with the regulations, as well as criminal penalties against individuals and corporations who knowingly steal or misuse patient data.

The civil penalties have long been viewed as irrelevant by the health care industry. Now the criminal penalties have been gutted:

U.S. Medical Privacy Law Gutted