Missing User Warnings
Medium
- Confidence
- 95% confidence
- Finding
- The README explicitly states that patient records, medical charts, prescriptions, appointments, and financial data are stored as local Excel files, but it provides no warning or controls around encryption, file permissions, backups, or regulatory/privacy obligations. In a healthcare context, this is especially dangerous because these files contain highly sensitive medical and personal data that can be easily copied, emailed, or accessed by other local users if the host system is not locked down.
