Report Offensive Message

I worked in a non-profit organization that was very business like, and I didn't tell anyone what to do. I pretty much told them what the requirements were, and in a way not too much different that what is related in this article. Our CIO backed us up on this; and if the clients didn't listen - they got fired. But then we had classes on HIPAA and other security requirements, so it wasn't like they didn't know that this was important.