While the federal health data breach tally show a trend toward far fewer incidents involving the loss or theft of unencrypted mobile devices, regulators are reminding healthcare entities to remain vigilant to the risks involved in using laptops and other portable computing devices. Because their size and portability puts them at greater risk for being lost or stolen, mobile computing devices should be encrypted for data at rest as well as for data in transmission unless covered entities and business associates can document in a risk assessment other reasonable and appropriate controls being used instead. 

Read More at Healthcare Info Security