April 21, 2005 - Scope broadened on April 21, 2006
Applies to any organization or individuals who retain or collect health information.
Medical information lost under the wrong set of circumstances may result in: