Great, now clean up that clause in HIPAA that exempts protection of your health data from intelligence agencies. They don't even need a warrant. Intelligence agencies just need to ask and any company with your 'protected' health information can hand it over without any penalty and with zero liability. They don't even have to tell you they've done so.<p>Maybe it's paranoid to worry about such a thing. But then.. why do they need warrantless (and therefore untraceable) access to health information to begin with?<p>If ANY agent or associated personnel can make these requests, out of band and without a paper trail, how do we know there are no bad actors who may abuse the access?<p>We don't know. All principles of security say to assume there WILL be bad actors. In that case.. Therapy notes are great for blackmail. Medical conditions are great for assassination or simply sidelining a person temporarily with health issues.<p>And if a bad actor is caught? Their actions will be relegated to a secret court and never brought to light.<p>This is what bad clauses in our privacy laws have enabled for decades. A system that can be abused, invisibly, with very little oversight or accountability.