This is a relatively new subject for me so any background information that might help my understanding would be great! I have a client that wants to use the document management feature of Alfresco for storing data collected from their clients who are in the Medical and Financial industries. Is this feature of Alfresco inherently compliant with HIPAA? I'm not sure what goes into ensuring that Alfresco is indeed compliant or how to test if it is or not. Is there a checklist I can go through somewhere? Any other good resources?