[tedmiston]

> I’m terrified that there’s going to be a doctor’s office sometime that does the same, with more serious consequences.

they can send scheduling info, appt reminders, etc via SMS but (1) they must allow opt out, and (2) they cannot send medical info this way — that's where HIPAA requires encrypted "patient portal" messaging because SMS can be intercepted or accessed by others.

[MandieD]

That's good to know - I'll tell him to check that with his current doctors' offices, and make sure that he makes it clear for any new practices he visits that he only does phone calls and postal mail.