A business continuity,disaster recovery,disk storage,disk recovery consultant!So boring?

I do agree with you but I would like to share something more also over here. I think enforcement is a must for HIPAA regulation and needs to be taken seriously by covered entities and business associates. I recently came across a regulations poster from Symantec, a very useful tool which I found on this website http://www.compliancehome.com/symantec/. This poster is crosswalk between: HIPAA, ISO 17799, COBIT 4.0, Sarbanes Oxley, Payment Card Industry (PCI), GLBA, NERC standards CIP and PIPEDA (Canada). With the help of this tool organization can comply not only with HIPAA but many other different regulatory authorities listed above.