Has anyone taken measures to secure their PDA in the wake of the upcoming HIPAA requirements?

Have you tried security applications like Teal Lock to both lock and encrypt patient (or other) data?

Have you run across any reports or material that suggest (or demand) that information on our little friends may be at risk and what steps are necessary to secure it?

I would suggest that one never allow Information Technology department personnel get within three feet of your PDA unless you want to be logging on to your own PDA with an eight character alphanumeric password each time you turn it on. Seriously.

Originally posted by StatCoder.com
I would suggest that one never allow Information Technology department personnel get within three feet of your PDA unless you want to be logging on to your own PDA with an eight character alphanumeric password each time you turn it on. Seriously.

Unfortunately, for the time being, that could be me. That's why I'm looking for solutions and suggestions.

PDAs and HIPAA

Q Do physicians need to purchase security software for their hand-held computers in order to comply with the Health Insurance Portability and Accountability Act (HIPAA)?

A While security software for your personal digital assistant (PDA) is a good idea, it is not required under HIPAA. According to comments from the Phoenix Health Systems' HIPAAdvisory Web site (www.hipaadvisory.com/live/FAQ/security.htm), "PDAs do not specifically require encryption. Instead, either through training or other measures, there must be a reasonable assurance that the PDA will not be lost or otherwise accessed by unauthorized personnel. While encrypting a PDA is perfectly OK under HIPAA, it is not required if it is reasonable to assume that other methods are being employed to protect the data."

For additional reading on this issue, consult the following sources:

A report from palm.com called "Security Brief: Implementing HIPAA-Compliant Palm Handheld Solutions" (www.palm.com/pdfs/ HIPAA_compliant_solutions.pdf).
A series of articles available at pdamd.com about the implications of HIPAA on PDAs (www.pdamd.com/vertical/features/HIPAA1.xml, www.pdamd.com/vertical/features/HIPAA2.xml, www.pdamd.com/vertical/features/HIPAA3.xml).
K. Meg Morrison, MD
Associate Director, Mount Carmel Family Practice Residency
Columbus, Ohio

there must be a reasonable assurance that the PDA will not be lost

What does "reasonable assurance" that it won't be lost actually MEAN, anyway? I've lost many things I've been "sure" I wouldn't...guess I'll have to tether it to my body! :)

Try out PDADefense. It encrypts your data, and even has a self destruct mechanism if your passowrd is not entered correctly after a certain number of tries. It can be stored on flash, and that will make it permanent.

It is not completely secure. You would have to be a pretty good hacker to get around the program, and later through the encryption.

Originally posted by kidfixer
Try out PDADefense. It encrypts your data, and even has a self destruct mechanism if your passowrd is not entered correctly after a certain number of tries. It can be stored on flash, and that will make it permanent.

It is not completely secure. You would have to be a pretty good hacker to get around the program, and later through the encryption.

PDADefense would be my 1st choice, but they don't seem to have plans to support OS5 on Clies, and I have an NX60.  They do support the Tungstens.  Go figure...

It has the right features but the wrong support.  I'm still looking for more options.

Maybe this is why the new PocketPC's have fingerprint recognition - an evil Microsoft plot to take-over the medical palmtop niche!