When Microsoft launched HealthVault medical-records system for individuals (see David Hamilton’s original review here), it made a big deal about the built-in security measures. Indeed, they rendered the service virtually unusable.
But a closer at the service shows that it isn’t subject to HIPAA, a federal law that sets strict medical data privacy standards. A closer look by David Hamilton, at VentureBeat LifeSciences, is disquieting.
Microsoft reserves the right to store your medical data offshore, in countries that may not have the same privacy protections as the U.S. It also appears to open the door to a potentially unlimited line of people, entities or programs that can obtain permission to read and alter your health information, since it’s possible to delegate the ability to grant those permissions to others. Read on for more.
Tags: co:HealthVault