naavi writes:
A recent Economic Times Report in India which reported a successful Sting operation by a UK agency in which some health related data was bought from a medical transcription company has evoked some predictable response in US. As could be expected, there are voices stating that the best way forward for Health Care Information Security is not to outsource.
Seon Caroll CEO of Webmedx, one the large medical transcription companies in USA has stated that it is unrealistic to think that US laws can be effectively enforced outside our borders sufficient to deter the misuse of information or breaches of security. The Company therefore advocates 100% US infrastructure as a policy of security.
While one can appreciate the business strategy of Webmedx to promote its “No- Outsourcing” policy as a virtue, it is necessary to take a pragmatic view of the problem and work towards a solution.
Read more on Blogger News Network.
Another reminder why there is a dire need for stronger regulation and enforcement of data protection laws in India. Never can overemphasize the importance of contracts and vendor management when it comes to outsourcing that involves transfer of PHI or other sensitive information.