On Sun, 31 May 2015 18:07:53 +0100
David Woolley for...@david-woolley.me.uk wrote:
Point out that the repeated such mistakes by
Oracle employees are not good for its public image.
It has one?
--
Brian Morrison
___
Support@pidgin.im mailing list
Hello,
We are interested in using pidgin with the otr plugin for messaging between
staff, as pidgin-otr has high ratings/reviews. We are a doctor's office and
therefore governed by the rules of HIPAA. Would it be possible to get a
business associate agreement between our company and pidgin?
Do you need a similar agreement with Microsoft for your use of Windows? Word?
Excel?
Do you need a similar agreement with the vendor of your appointment scheduling
vendor?
Basically, I highly doubt that HIPPA requires that you sign a business
associate agreement with every software vendor you
On 01/06/15 19:26, Catherine Galle wrote:
We are interested in using pidgin with the otr plugin for messaging
between staff, as pidgin-otr has high ratings/reviews. We are a doctor's
office and therefore governed by the rules of HIPAA. Would it be
possible to get a business associate agreement
On 01/06/15 21:35, Catherine Galle wrote:
Yes we are required to have a 'BAA' with our appointment scheduling
software. We do not have to have an agreement with Windows as nothing
that is considered electronic protected health information is submitted
to or through them.
If you use Windows
Luke,
Yes we are required to have a 'BAA' with our appointment scheduling
software. We do not have to have an agreement with Windows as nothing that
is considered electronic protected health information is submitted to or
through them.
Sincerely,
Catherine
On Mon, Jun 1, 2015 at 1:58 PM, Luke
EVERYTHING that you do on a computer is submitted through your operating
system. If you type protected information on the keyboard, the OS is
responsible for transmitting that information to the application. If you save
protected information to disk, the OS plays a part in moving that
Precisely, Pidgin is just a client, that will allow you to connect to one or
more of many Instant Messaging services out there. See my other reply.
Pidgin is open source software, and has never required contributors to assign
their rights to the project management. Thus it is not that Pidgin
David,
Thank you for your response. OTR does actually encrypt the messages (I have
tested it), which is the requirement of HIPAA if we transmit protected
health information. Pidgin would be used between employees for things like
Please sign Jane Doe's chart from 6/1/15 or Please confirm the urine
It's also worth noting, though, that OTR will disable logging and will
delete messages along with their encryption key when the conversation
ends. So, if nothing records the messages on either machine *during the
conversation*, they cannot be retrieved. I'm assuming you already know
this, Luke,
The server can, and must be assumed to, record. For most OTR conversations, it
can be safely assumed that the time to brute force the messages, especially
since with OTR you have to brute force them effectively individually, is
prohibitive. But it should be evaluated if that risk is
11 matches
Mail list logo
