HIT vendors rely on security standards that don't meet HIPAA requirements - FierceEMR: Health IT vendors don't often protect electronic patient information in accordance with HIPAA, even when they and their provider clients think that they're in compliance with the law