Ho man. Do you think the Dr’s illegible scribble on the prescription pad as it is, is because Dr’s are so great at attention to detail and learning new things that they’ll be able to do that effectively?

Without it being an even worse situation where they get a Trojan from opening random emails or surfing for porn, and then all the sudden 100k valid appearing prescriptions for controlled medications all the sudden show up in pharmacies across the country?

This stuff is mostly fixed with EMRs. For most applications, paper scripts are rare.

> Nope. Invading privacy is invading privacy. Just because something is happening today does not make it okay and acceptable

Thats not what I was trying to say. My point was that the state already has this data, and I've already seen it before I get a copy of the data from the pharmacy. If you're concerned about the privacy of the data, you should consider the root issue of warrantless access to the PMP by investigators. Anything I get from the pharmacy is just a piece of paper that says the same thing that I already had from that

> Here is a wild idea: we have tjis thing called the internet and this other wild thing called PKI. Give the doctor a certificate pair and they digitally sign every prescription. You don't ever need to talk to the doctor, you just need to pull their public certs.

This is a great idea in theory, but currently has some problems. Some of them probably could and should be addressed, some not.

- Old people who dont want to learn. The PMP lets doctors get a list of every prescription filled in their name in a spreadsheet. You can sort and filter by where it was filled, patient name, type of medication, etc. Of the doctors Ive dealt with, maybe 10% knew about this and used it. A few learned about it from me, got excited, figured it out, and used it to its fullest extent. Most just went "yeah okay" and ignored it because spreadsheets are too complicated.

- Where are we storing this? Can only the doctor do it? From only one computer? Can his receptionist call in the prescription? Can anyone else access that computer? Basically is there any way at all for fraud to happen? What if its the doctor whos the one doing it? Ive seen pharmacists say "Were getting a lot of suspicious prescriptons from this one doctor" who was just flat out selling them to people who had no problems. E-scripts are a thing, and ive seen cases where nurses and receptionists hop onto the system to write illegal scripts.

> Since we're doing privacy, give the chumps that need the prescription a cert pair and encrypt their shit

My mom thinks opening chrome dev tools is going to get her arrested for hacking a website. Please dont put the onus of key pair encryption on her in any way

> + make it a crime to store any of their PII at pharmacy level Im not sure if its a legal/regulatory requirement, or just a moral thing, but Pharmacists are highly trained, with a Doctorate in what they do, and they catch things. Whether its a Doctor wrote the wrong script, or a potentially lethal contraindication between meds. Them having records of what else a person is on is a legitimate medical use case. There may be ways to keep this sort of data without PII, but it would be another concern to address.

Bake the cert pair into the id you are giving out to people. Look at the system in Estonia