As much as we need much better privacy laws and policies around health related IT, I am missing in the current discussions any focus on the responsibilities of the GP practices.
Realistically patients do not get much of a choice when a GP decides to use a system like #ManageMyHealth and there must be due diligence on the side of the GPs as well, particularly as we see more and more bigger chains taking over smaller practices.
Of course these aren't IT specialists and it'll be difficult to assess the security of any provider, but the answer to that cannot be just winging it and leaving it to who's got the best sales teams while pushing all the risks and damages to the patients alone.

#health #nz #breach #privacy