Security privacy and ethics online dating
The report concluded that this was "an unacceptable shortcoming" considering Ashley Madison's high-profile as an adult dating site trading in sensitive information.
ALM has agreed to a number of remedies, including the promise to conduct a comprehensive review of security, to stop indefinite retention of information from deleted profiles and to provide a "no-cost option" for users who want to withdraw consent for their information being held by the site.
The CEO of Ruby (formerly ALM) who took the reins in April this year, Rob Segal, says the company voluntarily entered the new compliance arrangements.
"The company continues to make significant, ongoing investments in privacy and security to address the constantly evolving threats facing online businesses," he said in a statement on the Ashley Madison site.
New technologies have vastly improved the ability to electronically record, store, transfer and share medical data.
While these new advances have potential for improving health care delivery, they also create serious questions about who has access to this information and how it is protected.
"Though ALM had some security safeguards in place, those safeguards appeared to have been adopted without due consideration of the risks faced," the report found.
Two (Montana and Washington) have passed the Uniform Health-Care Information Act of the National Conference of Commissioners on Uniform State Laws, (NCCUSL) (1985).
Many state statutes govern specific classes of health information, such as HIV-infection and AIDS patient information, mental health information, and communicable disease information held by public health agencies.
These controls must be adhered to by those handling the information.
Security is all the safeguards in a computer-based information system.
While every state has adopted some form of privacy protection, the level of health information protection can vary from state to state.