Can I store PHI on my laptop or mobile device?

At Indiana University, never store sensitive institutional data, especially protected health information (PHI) regulated by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), on your desktop workstation, laptop, USB flash drive, tablet, smartphone, or other mobile device unless the information is properly encrypted on the device, and your senior executive officer or the IU Institutional Review Board (IRB) has given prior written approval.

UITS provides consulting and online help for Indiana University researchers, faculty, and staff who need help securely processing, storing, and sharing data containing PHI. If you have questions about managing HIPAA-regulated data at IU, contact UITS HIPAA Consulting. For additional details about HIPAA compliance at IU, see HIPAA Privacy & Security on the University Compliance website.

This is document ayzj in the Knowledge Base.
Last modified on 2018-04-17 10:57:10.

Contact us

For help or to comment, email the UITS Support Center.