Congratulations to CBI Sr. Research Fellow William Aspray who just published Understanding Information History: The Case of America in 1920 (Springer).
Here's a video on YouTube making the case for why agile was an innovative methodology when it was first introduced 20 years ago.
However, he argues these days, daily scrums are a waste of time, and many organisations would be better off automating their reporting processes, giving teams more autonomy, and letting people get on with their work:
First, it's worth noting that many organisations that claim to be "agile" aren't, and many that claim to use agile processes don't.
Just as a refresher, here's the key values and principles from the agile manifesto: http://agilemanifesto.org/
Individuals and interactions over processes and tools
Working software over comprehensive documentation
Customer collaboration over contract negotiation
Responding to change over following a plan
Our highest priority is to satisfy the customer through early and continuous delivery of valuable software.
Welcome changing requirements, even late in development. Agile processes harness change for the customer's competitive advantage.
Deliver working software frequently, from a couple of weeks to a couple of months, with a preference to the shorter timescale.
Business people and developers must work together daily throughout the project.
Build projects around motivated individuals. Give them the environment and support they need, and trust them to get the job done.
The most efficient and effective method of conveying information to and within a development team is face-to-face conversation.
Working software is the primary measure of progress.
Agile processes promote sustainable development. The sponsors, developers, and users should be able to maintain a constant pace indefinitely.
Continuous attention to technical excellence and good design enhances agility.
Simplicity--the art of maximizing the amount of work not done--is essential.
The best architectures, requirements, and designs emerge from self-organizing teams.
At regular intervals, the team reflects on how to become more effective, then tunes and adjusts its behavior accordingly.
Your workplace isn't agile if your team is micromanaged from above; if you have a kanban board filled with planning, documentation, and reporting tasks; if your organisation is driven by processes and procedures; if you don't have autonomous cross-functional teams.
Yet in many "agile" organisations, I've noticed that the basic principles of agile are ignored, and what you have is micromanagement through scrums and kanban boards.
And especially outside software development teams, agile tends to just be a hollow buzzword. (I once met a manager at a conference who talked up how agile his business was, and didn't believe me when I said agile was originally a software development methodology — one he revealed he wasn't following the principles of.)
Wow #Fediverse, thanks for the help! I am genuinely surprised at how close the results were. It looks like the recommendation is to try out the #Threadiverse (#Kbin and / or #Lemmy) first - but only by 1.8% over #Peertube! Y'all must know that I've been getting frustrated with #Reddit lately. I also appreciate the recommendations for other things to explore.
Now the question is Kbin or Lemmy? Or both? (any thoughts?)
Did you know that before they were making razors, @PhilipsNorelco
made intercom systems? Neither did we! The image of the day shows the Norelco S1 (left and the Norelco S2 (right), ca. 1960s.
I am at the SLATE conference in Wisconsin Dells today through Wednesday (and presenting on Tuesday!). If any other Wisconsin teachers will be there feel free to swing by and say hello!
Conservationist and photographer Scott Trageser has developed a 3D scanning system that could potentially reshape how animals are studied in the wild.
The system uses an array of cameras that work in sync to rapidly capture photos of animals in the wild, yielding a virtual 3D specimen viewable on smartphone or with a VR/AR headset.
A bit ironic given this is disseminated over the Internet...
The Internet would be far better if giant corporations didn't control platforms & endlessly surveille & profile & do so very unequally--to me that largely is a capitalism, governance & regulatory failure--power & control of infrastructure.
Understanding current environmental issues requires having a critical eye to all information related to the release and distribution of chemicals into the environment.
If this was a #scifi novel, you know what would happen next... we'd establish contact with an alien civilisation, who would either share some extraordinary #technology with us, or enslave us.
However, the real explanation for the landfall of this high-energy particle source may turn out to be more mundane?
The Golem at Large: What You Should Know About Technology
In a series of case studies they demonstrate that the imperfections in technology are related to the uncertainties in science described in the first volume, What You Should Know About Science.
I have a Depstech endoscope camera. It's a Wifi camera, so it broadcasts an SSID and you have to connect to it with your phone in order to view the camera footage. It stands to reason that means it has to be hosting a webserver for the camera itself right? But they only tell you to use their app to connect to the camera (spoiler alert, the apps, yes multiple apps, are all totally untrustworthy). I'm trying to figure out if I can connect to this thing just by knowing the IP address, which I am unable to find anywhere. Any ideas?
I'm in the #Humanities Commons instance, and we have free profiles like https://hcommons.org/members/stevemccartyinjapan that include a link to the old blue bird of Twitter, and members are increasingly leaving, so our admins at @hello might want to reconsider having that item in the next version of profiles.
TITLE: Polite Example Letter to a Health-Related Website Endangering Your Privacy
THIS is the letter I wish more people would send to health-related websites and merchants when they observe a privacy problem!
fullscript.com is a service that dispenses non-pharma products to patients (like medical grade supplements) based upon doctor's orders. You have to be referred by a physician to get a patient account. They even have a way of integrating with EHR systems.
They need to get security right.
To: Fullscript Support <[email protected]>
Dear Fullscript Team:
I have always appreciated being able to order from your excellent website.
Your service strives to supply patients with supplements and medicines ordered by doctors. As such, what is ordered can give insight into medical conditions that patients may have.
You may or may not be covered by HIPAA regulations, but I'm sure you will agree that ethically and as a matter of good business practice, Fullscript would want to maintain medical privacy of patients given that medical practices trust you.
This is why I'm concerned with the HIGH level of 3rd party tracking going on throughout your product catalogue. On your login page, the Firefox web browser displays a "gate" icon to let me know that information (I believe my email address) is being shared with Facebook. This is also the case with your order checkout page (see attached screenshot showing Facebook "gate" icon, as well as Privacy Badger and Ghostery plug-in icons in upper right-hand corner blocking multiple outbound data connections).
Privacy Badger is a web browser plugin that detects and warns of or stops (depending upon severity) outbound information from my web browser to 3rd party URLs. Directly below is Privacy Badger's report from your checkout page:
~~~~
Privacy Badger (privacybadger.org) is a browser extension that automatically learns to block invisible trackers. Privacy Badger is made by the Electronic Frontier Foundation, a nonprofit that fights for your rights online.
Privacy Badger blocked 23 potential trackers on us.fullscript.com:
insight.adsrvr.org
js.adsrvr.org
bat.bing.com
static.cloudflareinsights.com
script.crazyegg.com
12179857.fls.doubleclick.net
12322157.fls.doubleclick.net
googleads.g.doubleclick.net
connect.facebook.net
www.google-analytics.com
analytics.google.com
www.google.com
www.googletagmanager.com
fonts.gstatic.com
ad.ipredictive.com
trc.lhmos.com
snap.licdn.com
o927579.ingest.sentry.io
js.stripe.com
m.stripe.network
m.stripe.com
q.stripe.com
r.stripe.com
~~~
Please note that I was able to successfully checkout WITH Privacy Badger blocking protections on, so most of this outbound information was NOT necessary to the operation of your website.
There are several advertising networks and 3rd party data brokers receiving some kind of information.
I am aware that a limited amount of data sharing can be necessary to the operation of a website (sometimes). I am also aware that this all is not malicious -- web development and marketing does not usually talk to the legal department before deploying tools useful to gathering site usage statistics (Crazy Egg and Google Analytics). However, these conversations need to happen.
As for "de-identified" or "anonymized" data -- data brokers collect information across several websites, and so are able to reconstruct patient identities even if you don't transmit what would obviously be PHI (protected health information). As an example, if Google sees the same cookie or pixel tracking across multiple websites and just one of them sends a name, then Google knows my name. If Facebook is sent my email address (as looks to be the case), and I happen to have a Facebook account under that same email address, then Facebook knows who I am -- and can potentially link my purchases with my profile.
The sorts of computing device data that you are collecting and forwarding here may well qualify as PHI. Please see:
Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates
<https://www.hhs.gov/hipaa/for-professionals/privacy/guidance/hipaa-online-tracking/index.html>
This HHS and OCR guidance includes many 3rd party tracking technologies.
What I would really like to see happen is:
a) A thorough look at what information your website is sending out to what 3rd parties, along with an understanding of how data brokers can combine information tidbits from multiple websites to build profiles.
b) Use of alternative marketing analysis tools that help your business. For example, there are alternatives to Google Analytics that do not share all that data with Google and still give your marketing team the data they need.
c) An examination if you are sharing information about what products patients are clicking on and/or purchasing with 3rd parties. This would be especially problematic. (Crazy Egg tracks client progress through a website, but I'm unclear if they keep the information or just leave it with you.)
d) Use of alternative code libraries that are in-house. For example, web developers frequently utilize fonts.gstatic.com, but you could likely get fonts and other code sets elsewhere or store them in-house.
I appreciate you taking time to read this and working on the privacy concerns of your patients and affiliated medical practices.
Thanks.
~~~~~~
#AI #CollaborativeHumanAISystems #HumanAwareAI #artificialintelligence #psychology #counseling #socialwork #psychotherapy #EHR #medicalnotes #progressnotes @[email protected] @[email protected] @[email protected] @[email protected] @socialwork @[email protected] #mentalhealth #technology #psychiatry #healthcare #patientportal #HIPAA #dataprotection #infosec @[email protected] #doctors #hospitals #BAA #businessassociateagreement #coveredentities #privacy #HHS #OCR #fullscript
TITLE: Further Adventures in the HIPAA Silliness Zone
This short essay was inspired by a video I watched going over Microsoft legal agreements, the upshot of which is that they can harvest and use ALL of your data and creations (See *1 below in References). This inspires interesting HIPAA questions to say the least:
IF you have a HIPAA agreement with Microsoft, do they actually NOT harvest or use your data? How do they track that across all their applications and operating systems to tell?
Do their HIPAA and regular legal departments even talk to each other?
If you have a HIPAA agreement for your work computers, but then access your data through home computers, are all bets off? (And what sole proprietors don't mix use of computers for both?)
Now I don't really believe that Microsoft is doing all of this. What I THINK is that their lawyers just wrote overly broad legalese to protect them from all situations. Still -- legally it leaves us hanging. I certainly don't know that they are NOT doing it.
Then, I start thinking on some of the other crazy security situations I've encountered the past few years:
-- The multi-billion dollar medical data sales vendor that bought a calendar scheduling system, then wrote a HIPAA BAA agreement in which the PROVIDER has to pay any financial damages and penalties if THEY slip-up and lose data. (*2). Gee, what could go wrong?
-- The new AI progress notes generator service that sends data to 3rd parties including Google Tag Manager, LinkedIn Analytics, Facebook Connect, and Gravatar (*3)
-- The countless data breaches currently hitting hospitals across the USA. (*4)
It's all really quite mind numbing if you are a small healthcare provider or sole practitioner. I suspect 99% of us have just tuned this all out as noise at this point. After all, do we have the time or money to take on the legal departments of multi-billion dollar corporations?
The net results of this will be helpless nonchalance, boredom, and a gradual shifting of liability to US when upon occasion data is actually leaked by our vendors. And, of course, ever more fear and uncertainty in professions already full of it. Oh, and client data flowing through data brokers everywhere.
So what can we do? At first glance, not much. We need to be pressuring our professional associations to take on (or further take on) data security concerns including liability of giant "subcontractors" and insurance companies versus small healthcare providers. We also need to be supporting HHS and Federal government efforts to stop 3rd party trackers, including cookies, web beacons, pixel tracking, etc. from being allowable on systems related to healthcare. (*5) Bonus points if the penalties can apply mainly to larger corporations rather than hitting small provider offices hard.
Thanks,
Michael Reeder LCPC
Baltimore, MD
REFERENCES:
(*1)
The following video walks through the Microsoft Services Agreement and Microsoft Privacy Agreement to explain how Microsoft reserves the rights to use all data that you transmit through their services, or create or store in their apps (including data stored on OneDrive). It also collects information from all the programs used on your Windows machine. (This would seem to mean they can harvest data from your local hard drive, but I'm not sure.)
Microsoft Now Controls All Your Data
[https://m.youtube.com/watch?v=1bxz2KpbNn4&pp=ygUkTWljcm9zb2Z0IG5vdyBjb250cm9scyBhbGwgeW91ciBkYXRh](https://m.youtube.com/watch?v=1bxz2KpbNn4&pp=ygUkTWljcm9zb2Z0IG5vdyBjb250cm9scyBhbGwgeW91ciBkYXRh)
"("Data"), how we use your information, and the legal basis we use to process your Personal Information. The Privacy Statement also describes how Microsoft uses your content, i.e. Your communications with other people; the submissions you send to Microsoft through the Services; and the files, photographs, documents, audio, digital works, live streams, and videos that you upload, store, transmit, create, generate, or share through the Services, or any input you submit to generate content ("Your Content")."
(*2)
Full Slate: Last I checked their HIPAA, privacy, and BAA agreements. Although they reserve the right to change these agreements without notification and just post them to their website, so who knows at this point. <https://www.fullslate.com>
(*3)
Autonotes.ai: In fairness, they claim that no HIPAA data should be input into their system, even though you are writing progress notes. As of 7/30/23 they sent some sort of data to Google Tag Manager, LinkedIn Analytics, Facebook Connect, Gravatar which was severe enough that the Ghostery browser plug-in felt compelled to block or flag the transmissions. I hope they have changed this.
It should be pointed out that services similar to Full Slate and Autonotes claim that data sent to 3rd parties is not PHI and/or necessary to the operation of the service. This all could be true. I find that when Privacy Badger, or Ghostery, or my Pihole DNS server block these 3rd party transmissions that the vast majority of the time services work just fine.
Please also see Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates
<https://www.hhs.gov/hipaa/for-professionals/privacy/guidance/hipaa-online-tracking/index.html>
This HHS and OCR guidance includes the sorts of 3rd party tracking technologies often referred to as non-PHI, or de-identified. My non-lawyer mind is suspicious that violations could be found at several services.
(*4)
Just take a look at any of the daily headlines on Becker's Hospital Review:
<https://www.beckershospitalreview.com/cybersecurity.html>
(*5)
Hospital associations sue HHS over pixel tracking ban
<https://www.beckershospitalreview.com/healthcare-information-technology/hospital-associations-sue-hhs-over-pixel-tracking-ban.html>
--
#AI #CollaborativeHumanAISystems #HumanAwareAI #artificialintelligence #psychology #counseling #socialwork #psychotherapy #EHR #medicalnotes #progressnotes @[email protected] @[email protected] @[email protected] @[email protected] @[email protected] @[email protected] #mentalhealth #technology #psychiatry #healthcare #patientportal #HIPAA #dataprotection #infosec @[email protected] #doctors #hospitals #BAA #businessassociateagreement #Microsoft #coveredentities #privacy #HHS #OCR
Mark Katz surveys the age-old interrelationship between music and technology, from prehistoric musical instruments to today's digital playback devices. This Very Short Introduction takes an expansive and inclusive approach meant to broaden and challenge traditional views of music and technology.
Portable Folding Electric Car Market Report 2023: Understanding Market Behavior, Evaluating Competitive Landscape, and Crafting Effective Business Strategies
Portable Folding Electric Car Market is poised for significant revenue growth and exponential expansion, with a projected remarkable Compound Annual Growth Rate (CAGR) throughout the forecast period spanning from 2022 to 2032.
The portable folding electric car market has been gaining traction in recent years, reflecting the growing demand for compact and convenient transportation solutions. These vehicles typically feature foldable designs, allowing users to easily collapse and carry them in compact form when not in use. This makes them suitable for urban commuting, short trips, and addressing the challenges of limited parking space in crowded cities.
The market for portable folding electric cars is driven by factors such as increasing awareness of environmental issues, the push towards sustainable transportation, and advancements in electric vehicle technology. Consumers are drawn to the convenience of folding electric cars, which can be easily stored in small spaces, like apartments or offices.
Manufacturers in this market are focusing on improving battery technology, reducing the overall weight of the vehicles, and enhancing their range. The goal is to provide users with a reliable and efficient means of transportation that aligns with the principles of eco-friendliness and practicality.
Urban Mobility Solutions: Portable folding electric cars are tailored to meet the demands of urban environments where traffic congestion and limited parking space are common challenges. Their compact size allows for easy maneuvering through crowded streets and efficient parking.
Foldable Design: The standout feature of these cars is their ability to fold into a more compact form, making them easy to store in tight spaces such as small apartments or offices. This feature enhances the overall convenience and versatility of these vehicles.
Range and Battery Technology: As with any electric vehicle, the range is a crucial factor. Manufacturers are continually working on improving battery technology to extend the distance these portable cars can cover on a single charge. Advances in battery efficiency and energy density contribute to the overall appeal of these vehicles.
Charging Infrastructure: The growth of the portable folding electric car market is closely tied to the expansion of charging infrastructure. As more charging stations become available in urban areas, the practicality and feasibility of using these vehicles increase, making them a more attractive option for potential buyers.
Environmental Concerns: The increasing awareness of environmental issues and the push towards sustainable transportation solutions contribute to the popularity of electric vehicles, including portable folding cars. Consumers are seeking eco-friendly alternatives to traditional gas-powered vehicles.
Government Incentives: Many governments around the world are offering incentives and subsidies to promote the adoption of electric vehicles. This support can significantly impact the affordability of portable folding electric cars, making them more accessible to a broader range of consumers.
From the CBI Archives.
UCLA CS Prof Leonard Kleinrock, successfully transmitted the first message over ARPANET from UCLA to Stanford. The group intended to transmit the word “LOGIN,” but the system crashed just after they had sent the first two letters.
Today's image of the day shows Joe Sullivan (seated) and Tom Burke (standing) using PLATO terminals to record Hennepin County election returns at the Minneapolis Business & Technical Center, as local CBS TV affiliate WCCO films the action, 1982.
How the World Really Works: The Science Behind How We Got Here and Where We're Going
An essential analysis of the modern science and technology that makes our twenty-first century lives possible—a scientist's investigation into what science really does, and does not, accomplish.