Although this is only one case and

Although this is only one case and one industry, the impact is huge. Considering that the medical transcriptions industry is a $20 billion-a-year business in the United States, and the share of data processing being sent offshore by many other businesses is largely unknown, the sheer enormity of the numbers throughout the business marketplace is enough to make a tremendous case for increased scrutiny. And, if an organization chooses to outsource a business process that contains personal information —and a security breach occurs —the organization that outsourced the data will be held accountable for the actions of the outsourcing company in the court of public opinion and may be found negligent in a court of law. There also may be numerous statutory requirements such as the Gramm-Leach-Bliley Act (GLBA) or state laws (California SB 1386, for example) that come into play.