Hello,Our IT department is setting up our electronic record to deliver patient records to a health information exchange. There are hundreds of organizations and people who may then look at our patients' records. So you must have been through this, so may I ask:1. Should we find and offer a way for patients to "opt out" of this?2. Should we add Health Info Exchange to our Notice of Privacy Practices as something we are going to do with their info (whether they like it or not)?Thank you!