HIPAA and HITECH require individually identifiable protected health information (PHI) be secured. The unfortunate reality is that these acts of Congress aren’t prescriptive regarding what needs to be done about computer systems. Your company’s reputation is on the line. Be certain that databases containing sensitive information are fully protected.