I think the problem in this story is not that there was a CD found with medical data but rather that it was not encrypted. As it mentioned in the end of the article this is violating many medical record privacy laws. Now the company has assured the public as well as their policy holders that no information was retrieved and misused after interviews that THEY conducted. How is that suppose to make them feel much better? How does anyone know that for sure? The answer is you can not. Not only can you not be positive your personal information was not leaked but your information was not even protected. It was sent on a CD which anyone with a computer could read. Which is a violation in itself. I feel they must be prosecuted because these laws were put in place to protect people and if we can make an example of this company and set a precedent for future cases hopefully this will not happen again.
Source:
http://news.com.com/2100-1029_3-6167435.html
Subscribe to:
Post Comments (Atom)
1 comment:
Good words.
Post a Comment