If there are any breaches of people's electronic medical records, or other problems that might make them susceptible to privacy violations, the individual in question should definitely be notified. The individual should be notified within at least 2 weeks, not just waiting 60 days for notification of said breach. There could be significant damage to many peoples' lives if their medical records get out. Furthermore, electronic information has vulnerabilities to interception than records stored in more traditional ways. There have been many problems with viruses and other security issues related to electronic data on the Internet. Many people do not like the idea of the government maintaining a centralized database of their medical records. Vendors who service the government with maintaining electronic medical records should be required to at least notify the individuals involved and the government if any electronic medical records were breached.