this post was submitted on 11 Feb 2024
-40 points (30.0% liked)
Privacy
31991 readers
490 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Enterprise /= consumer
This. HIPAA laws in the US are strict and well enforced for enterprise.
Sadly HIPAA doesn't do a great job, but it's part of the bigger picture.
Honestly, large hospitals don't do a great job with IT security, and smaller operations are even worse.
It's not the MS spying part (which doesn't happen in enterprise, because networks are managed) that's the biggest concern, it's the overall data management, security policy, encryption non-enforcement, and plain old poorly educated/trained users who are so susceptible to phishing attacks.
Add that most people think those of us who are security minded are paranoid, and put barriers in their way for no good reason.
Perfect combination of risk.
I've seen small business management wire $1mil to a criminal because they didn't follow company protocol.
These are the same management types you'll find at any company that isn't enterprise-level.
Edit: you'll find these types in enterprise too, but corp policy/procedure/process prevents them from fowling things up as easily, and they get trained on proper procedure or get pushed out, eventually.