{"id":2492,"date":"2013-06-17T00:00:00","date_gmt":"2013-06-17T00:00:00","guid":{"rendered":"http:\/\/otava.test\/unencrypted-laptop-stolen-13k-patients-affected\/"},"modified":"2013-06-17T00:00:00","modified_gmt":"2013-06-17T00:00:00","slug":"unencrypted-laptop-stolen-13k-patients-affected","status":"publish","type":"post","link":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/","title":{"rendered":"HIPAA Compliant Data Centers: Preventing Health Data Loss"},"content":{"rendered":"

According to HealthDataManagement.com, a laptop that may have operating room information on nearly 13,000 pediatric patients was stolen from a badge-controlled access area of the Lucile Packard Children\u2019s Hospital at Stanford in early May. While the electronic systems were encrypted, the laptop was not encrypted, and only protected with a password.<\/p>\n

Keeping electronic protected health information (ePHI) off of devices and in HIPAA compliant data centers<\/a> is one way to avoid a data breach caused by theft or lost laptops, phones, USB drives, etc. A data center that has the required physical<\/a>, technical<\/a> and administrative<\/a> security intact can meet the requirements of HIPAA to protect health data.<\/p>\n

Securing access to networks via VPN (virtual private networks) and the use of two-factor authentication<\/a> to log into said networks is the second step.<\/p>\n

According to FierceHealthIT.com, this isn\u2019t the first data breach for the hospital – in January, another laptop was stolen from an off-campus physician\u2019s car, and three years earlier in a separate incident, another laptop was stolen by an employee containing patient data.<\/p>\n

With the amount of laptop incidents the hospital has incurred, one would think finding a way to either keep ePHI or properly encrypt the device or data would be a priority. Establishing an administrative security policy against leaving devices in unsecured locations (i.e., vehicles) could also highlight employee awareness and prevent potential theft.<\/p>\n

\"HIPAA<\/a>For more about HIPAA compliant solutions, read our HIPAA Compliant Hosting white paper<\/a>. Questions to ask your HIPAA hosting provider, data center standards cheat sheet and a diagram of the technical<\/a>, physical<\/a> and administrative security<\/a> components of a HIPAA hosting solution (including HIPAA compliant clouds) are included.<\/p>\n

For other HIPAA compliant resources, check out:<\/p>\n

What is HIPAA Compliance?<\/a>
\nWho Needs to be HIPAA Compliant?<\/a>
\nHIPAA Glossary of Terms<\/a>
\nHIPAA Resources: Policies, Procedures and Training Materials<\/a>
\nHIPAA Compliant Hosting White Paper<\/a><\/p>\n

Register free online for our upcoming encryption webinars to find out how to protect your organization from data breaches:<\/p>\n

Encryption at the Software Level: Linux and Windows<\/a><\/em><\/strong>
\nJoin us for an informative\/technical webinar on encryption at the software level as Mark Stanislav, Security Evangelist at Duo Security discusses encryption for Linux, and Farooq Ahmed, Software Development Manager of Online Tech discusses encryption for Windows.<\/p>\n

Encryption at the Hardware and Storage Level<\/a><\/em><\/strong>
\nJoin Steve Aiello, Systems Support Manager at Online Tech for an informative webinar on encryption at the hardware and storage level.<\/p>\n

References:
\nLucile Packard Notifies 12,900 Following Laptop Theft<\/a>
\nLucile Packard Suffers Second Data Breach in Six Months<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

According to HealthDataManagement.com, a laptop that may have operating room information on nearly 13,000 pediatric patients was stolen from a badge-controlled access area of the Lucile Packard Children\u2019s Hospital at Stanford in early May. While the electronic systems were encrypted, the laptop was not encrypted, and only protected with a password. Keeping electronic protected health information (ePHI) off of devices and in HIPAA compliant data centers is one way to avoid a data breach caused by theft or lost laptops, phones, USB drives, etc. A data center that has the required physical, technical and administrative security intact can meet the requirements of HIPAA to protect health data. Securing access to networks via VPN (virtual private networks) and the use of two-factor authentication to log into said networks is the second step. According to FierceHealthIT.com, this isn\u2019t the first data breach for the hospital – in January, another laptop was stolen from an off-campus physician\u2019s car, and three years earlier in a separate incident, another laptop was stolen by an employee containing patient data. With the amount of laptop incidents the hospital has incurred, one would think finding a way to either keep ePHI or properly encrypt the device or data…<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"other_category":[],"class_list":["post-2492","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"\nHIPAA Compliant Data Centers: Preventing Health Data Loss | OTAVA<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"HIPAA Compliant Data Centers: Preventing Health Data Loss\" \/>\n<meta property=\"og:description\" content=\"According to HealthDataManagement.com, a laptop that may have operating room information on nearly 13,000 pediatric patients was stolen from a badge-controlled access area of the Lucile Packard Children\u2019s Hospital at Stanford in early May. While the electronic systems were encrypted, the laptop was not encrypted, and only protected with a password. Keeping electronic protected health information (ePHI) off of devices and in HIPAA compliant data centers is one way to avoid a data breach caused by theft or lost laptops, phones, USB drives, etc. A data center that has the required physical, technical and administrative security intact can meet the requirements of HIPAA to protect health data. Securing access to networks via VPN (virtual private networks) and the use of two-factor authentication to log into said networks is the second step. According to FierceHealthIT.com, this isn\u2019t the first data breach for the hospital – in January, another laptop was stolen from an off-campus physician\u2019s car, and three years earlier in a separate incident, another laptop was stolen by an employee containing patient data. With the amount of laptop incidents the hospital has incurred, one would think finding a way to either keep ePHI or properly encrypt the device or data...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\" \/>\n<meta property=\"og:site_name\" content=\"OTAVA\" \/>\n<meta property=\"article:published_time\" content=\"2013-06-17T00:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png\" \/>\n<meta name=\"author\" content=\"Irma Brillantes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Irma Brillantes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\"},\"author\":{\"name\":\"Irma Brillantes\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\"},\"headline\":\"HIPAA Compliant Data Centers: Preventing Health Data Loss\",\"datePublished\":\"2013-06-17T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\"},\"wordCount\":428,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\",\"url\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\",\"name\":\"HIPAA Compliant Data Centers: Preventing Health Data Loss | OTAVA\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png\",\"datePublished\":\"2013-06-17T00:00:00+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.otava.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"HIPAA Compliant Data Centers: Preventing Health Data Loss\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.otava.com\/#website\",\"url\":\"https:\/\/www.otava.com\/\",\"name\":\"OTAVA\u00ae\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.otava.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.otava.com\/#organization\",\"name\":\"OTAVA\u00ae\",\"url\":\"https:\/\/www.otava.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"caption\":\"OTAVA\u00ae\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\",\"name\":\"Irma Brillantes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"caption\":\"Irma Brillantes\"},\"url\":\"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"HIPAA Compliant Data Centers: Preventing Health Data Loss | OTAVA","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/","og_locale":"en_US","og_type":"article","og_title":"HIPAA Compliant Data Centers: Preventing Health Data Loss","og_description":"According to HealthDataManagement.com, a laptop that may have operating room information on nearly 13,000 pediatric patients was stolen from a badge-controlled access area of the Lucile Packard Children\u2019s Hospital at Stanford in early May. While the electronic systems were encrypted, the laptop was not encrypted, and only protected with a password. Keeping electronic protected health information (ePHI) off of devices and in HIPAA compliant data centers is one way to avoid a data breach caused by theft or lost laptops, phones, USB drives, etc. A data center that has the required physical, technical and administrative security intact can meet the requirements of HIPAA to protect health data. Securing access to networks via VPN (virtual private networks) and the use of two-factor authentication to log into said networks is the second step. According to FierceHealthIT.com, this isn\u2019t the first data breach for the hospital – in January, another laptop was stolen from an off-campus physician\u2019s car, and three years earlier in a separate incident, another laptop was stolen by an employee containing patient data. With the amount of laptop incidents the hospital has incurred, one would think finding a way to either keep ePHI or properly encrypt the device or data...","og_url":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/","og_site_name":"OTAVA","article_published_time":"2013-06-17T00:00:00+00:00","og_image":[{"url":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png","type":"","width":"","height":""}],"author":"Irma Brillantes","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Irma Brillantes","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#article","isPartOf":{"@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/"},"author":{"name":"Irma Brillantes","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263"},"headline":"HIPAA Compliant Data Centers: Preventing Health Data Loss","datePublished":"2013-06-17T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/"},"wordCount":428,"commentCount":0,"publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"image":{"@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage"},"thumbnailUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/","url":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/","name":"HIPAA Compliant Data Centers: Preventing Health Data Loss | OTAVA","isPartOf":{"@id":"https:\/\/www.otava.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage"},"image":{"@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage"},"thumbnailUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png","datePublished":"2013-06-17T00:00:00+00:00","breadcrumb":{"@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#primaryimage","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/download-hipaa.png"},{"@type":"BreadcrumbList","@id":"https:\/\/www.otava.com\/blog\/unencrypted-laptop-stolen-13k-patients-affected\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.otava.com\/"},{"@type":"ListItem","position":2,"name":"HIPAA Compliant Data Centers: Preventing Health Data Loss"}]},{"@type":"WebSite","@id":"https:\/\/www.otava.com\/#website","url":"https:\/\/www.otava.com\/","name":"OTAVA\u00ae","description":"","publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.otava.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.otava.com\/#organization","name":"OTAVA\u00ae","url":"https:\/\/www.otava.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","caption":"OTAVA\u00ae"},"image":{"@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263","name":"Irma Brillantes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","caption":"Irma Brillantes"},"url":"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/"}]}},"_links":{"self":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/2492","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/comments?post=2492"}],"version-history":[{"count":0,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/2492\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/media?parent=2492"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/categories?post=2492"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/tags?post=2492"},{"taxonomy":"other_category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/other_category?post=2492"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}