Thanks for the clarification, in that case the text is indeed really weak. Does that system work in practice, or are companies just claiming they are HIPAA compliant with close to no actual auditing mechanism?
loading story #48270613
You get that the technical controls in SOC2 are also extremely weak, right?
loading story #48267880