• IchNichtenLichten@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    9
    ·
    7 months ago

    I’m not saying that won’t happen but if it does Microsoft will be absolutely fucked as they got caught committing several million HIPAA violations, not to mention any exposure to classified material on government computers.

    • realbadat@programming.dev
      link
      fedilink
      English
      arrow-up
      14
      arrow-down
      1
      ·
      7 months ago

      My only thought there is “LOL”

      • Export violations (sanctioned countries)
      • Illegally collected personal information from children
      • Price fixing
      • Wage theft
      • Discrimination
      • Privacy violations
      • Mismanaging peoples 401ks

      There are long, long, loooooong lists of violations MS has been caught for. The penalty has always been a fine small enough that it’s a cost of doing business.

      • trolololol@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        7 months ago

        Why are you doing a list of ideas for Microsoft to abuse customers? Yes it’s a list if things they have done. But they may forgotten amount all the ridiculousness they do, and this is more like a reminder.

        • realbadat@programming.dev
          link
          fedilink
          English
          arrow-up
          10
          arrow-down
          1
          ·
          7 months ago

          I’m aware of them.

          Let’s look at some of the most historic:

          • NY Presbyterian Hospital - with no real efforts on their end to prevent the violation of thousands of records, they got a whopping fine of… Under $5 million.
          • AHC - lack of risk analysis, failures in procedures and policies, etc - Just over $5 million.
          • Data breaches - usually around $4-5mil, the worst case being Anthem, about 80 million people effected - $16 million in fines. A record.

          Criminal offenses? Yeah, plenty of those - with individuals, usually related to that information then being used for other purposes (scams, theft, etc).

          But a company like Microsoft, you’re going to have a hard time convincing me it’s going to ruin the company. The history of HIPAA violations and their fines tell a very different story.

        • cm0002@lemmy.world
          link
          fedilink
          English
          arrow-up
          6
          arrow-down
          1
          ·
          7 months ago

          You’re right they don’t, but only for covered entities which MS is not in any shape or form

          It’s just like when Grindr or whatever leaked people’s STD status, they nor MS are a medical provider or “covered business entity”

          HIPAA is an ok privacy law, but it is not the all supreme health privacy law you think it is

        • Aniki 🌱🌿@lemm.ee
          link
          fedilink
          English
          arrow-up
          4
          ·
          7 months ago

          You should read up on anyone even coming close to being beholden to those penalties, because they absolutely do fuck around when its corporations.

    • evatronic@lemm.ee
      link
      fedilink
      English
      arrow-up
      6
      ·
      7 months ago

      Consumer PCs are almost certainly not covered entities under HIPAA, nor is Microsoft in its role as an OS provider.

      Even then, if this whole thing were to result in an inappropriate disclosure by a covered entity, the organization that processes the data would be liable, not Microsoft.

      That’s like blaming the building contractor because you left the door unlocked and someone came in and stole your cat.

      • cm0002@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        7 months ago

        People give HIPAA way too much credit all the time, it’s fairly strict on who actually falls under it.