I'm thinking about using the Federation Gateway to share Exchange content with a subsidiary company. We're in a healthcare related field, so I need to assume that there could be patient information in a calendar appointment. I have not been able to find any official word from Microsoft that the Federation Gateway meets HIPAA compliance standards.
I'm assuming I'm not the first person down this road. Can anyone give me a pointer to the compliance statement for the Federation Gateway?
Thanks
Patrick