I know that many computer systems have to be certified or compliant with a spec ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

x86_64Ubuntu on March 22, 2021 | parent | context | favorite | on: Backblaze submitting names and sizes of files in B...

I know that many computer systems have to be certified or compliant with a spec to be used (HIPAA). Is there a possibility that such data being sent across the wire to a 3rd party would break such compliance?

xahrepap on March 22, 2021 | [–]

It depends on the relationship the third party has with the 1st party.

https://github.com/truevault/hipaa-compliance-developers-gui... was on HN a week ago. It seemed to jive pretty well with our internal policies at the HIPAA compliant company I work for.

bostonsre on March 22, 2021 | [–]

If you have patient info in file names, yep.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact