Re: SQL Server 2005, HIPAA and File Encryption
- From: Kent Tegels <ktegels@xxxxxxxxxxx>
- Date: Mon, 15 Oct 2007 21:04:18 +0000 (UTC)
Hello Jubal,
I have an application with uses SQL Server 2005 for data storage and a
customer is asking me if we encrypt our stored data to comply with
HIPAA. I can find almost no information about addressing this
requirement for systems using SQL Server 2005 so I'm wondering how
vendors are handling this aspect of HIPAA. Or is my customer
misinterpreting the requirement? The database server is stored in a
data center and is not accessible from the Internet (of course) so
encrypting the files seems to be of little, if any value.
The question to ask in case like this is "what does your HIPAA compliance officer define the requirement as."
Yes, there are probably things you want to take steps to assure access to, but since I'm not a lawyer, it is absolutely best to talk your client's experts on the topic.
Thanks!
Kent Tegels
DevelopMentor
http://staff.develop.com/ktegels/
.
- References:
- SQL Server 2005, HIPAA and File Encryption
- From: Jubal Harshaw
- SQL Server 2005, HIPAA and File Encryption
- Prev by Date: SQL Server 2005, HIPAA and File Encryption
- Next by Date: Re: Script A Login
- Previous by thread: SQL Server 2005, HIPAA and File Encryption
- Next by thread: Re: Database Diagram leads to ownership issue.
- Index(es):
Relevant Pages
|
|
