I'm just curious what other labs do when customers ask for HIPPA compliance when handling data recovery projects. We've always just handled it by keeping the station off network, cloning everything onto a single drive so nothing gets stored on the local machine at all, and not going back on network until it's been confirmed that both source and destination drive are disconnected. Then we log and verify that the clone is wiped promptly after the data is picked up.
How do you guys usually handle these cases. Maybe I'm taking it too far, I don't know. Just seems that off network is the only way to guarantee that it's 100% secure.
How do you guys usually handle these cases. Maybe I'm taking it too far, I don't know. Just seems that off network is the only way to guarantee that it's 100% secure.