Having worked in medical IT for a bit I can tell you HIPPA means doodly. It only gives the government an avenue to prosecute someone when they deem rules were broken.
News flash people, if your data is on a computer connected to the internet, you data is not secure I don’t care what encryption/security program you are running.
This whole cloud based storage evolved from two premises: the public one, that it will save money by limiting your investment on hardware infrastructure; and the secret one and actual driving force, your data is out where anyone can get to it at anytime.
The whole cloud thing is a scam from the start. You are letting someone else host your data on the “cloud”. The cloud is a collection of servers in some building somewhere, just not your building or where you are at. It is accessed through the internet for God’s sake. How much can you trust the internet. How much are you willing to trust critical data to somebody else’s care?