Discussions

We use a containerized DB (MariaDB) and store PHI. I know data is encrypted at rest on MedStack. Is there a need to further encrypt data/columns containing sensitive health information for HIPAA or PHIPA compliance? Storing encrypted data makes it difficult/expensive to use the encrypted data in queries so would like to avoid this in many cases.