Per the University of Illinois HIPAA Privacy and Security Directive: “Each [Health Care Component] (HCC) must encrypt all HCC laptops and any HCC portable data storage devices used to access, process or store ePHI or has the potential to access, process or store ePHI, including but not limited to, flash drives, handheld devices, removable media, and backup media. Data encryption storage specifications must meet or exceed the minimum standard specified by the Security Official.”
As with other many other IT functions, encryption strategies vary based on the software systems procured and implement for each campus. For information on encryption strategies available for your campus, please click on the appropriate link below.
AITS Encryption Services
UIS Encryption Services