HHS Proposes Default Encryption
HEALTHCARE PRIVACY—U.S.February 27, 2012
The Notice of Proposed Rulemaking (NPRM) for Stage 2 Meaningful Use proposes that mobile devices that retain patient data have default encryption enabled, reports InformationWeek. A Health and Human Services (HHS) study recently found that almost 40 percent of breaches involved lost or stolen devices. "It has become very clear that one of the major sources of breaches of data comes from lost or stolen devices, and you would not be reading about this loss of data had the information been encrypted," said HHS Office of the National Coordinator for Health IT Chief Privacy Officer Joy Pritts.