Add as a preferred source on Google


UK University Hospital Manages Portable Data with Encrypted Drives

  • By Dian Schaffhauser
  • 03/02/11

A university hospital in Britain has mandated the use of removable media from IronKey for staff and consultants who carry patient data with them. Based in California, IronKey sells encrypted USB drives that can be managed remotely by IT administrators through IronKey Enterprise, a Web-based application. If a device goes missing, IT can remotely disable it and wipe the data.

The Norfolk and Norwich University Hospitals NHS Foundation Trust began issuing the portable drives in summer 2010. At that time the organization told staff, "Users will no longer be able to use their own removable storage devices on the network and will have to submit a request for a Trust Iron Key." The Trust purchased 500 keys and informed users that once that stock was depleted, each department would be responsible for funding replacements. The design of the device makes it waterproof; because it has a rubberized cap, it can be disinfected, a consideration for a hospital setting.

In the United Kingdom the 1998 Data Protection Act sets out guidelines to allow individuals to control information about themselves. Although it doesn't reference privacy per se, the Act does stipulate that organizations holding personal information need adequate security measures in place.

The UK's National Health Service developed an Information Governance Toolkit, which lays out how its agencies process or handle information, including patient data. The Toolkit offers assessment guidance to help organizations understand and report on what level of maturity they're at in their data security processes. The assessment is done annually.

"When data losses in other public sector areas hit the news headlines, the Department of Health issued a mandate via the IG toolkit, which meant our IT team took the required steps to not only protect all data stored on USB drives, but also to ensure we achieved Level 2 of the toolkit," said Ben Everitt, acting head of IT at the Trust.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • Hand holding a stylus over a tablet with futuristic risk management icons

    Why Universities Are Ransomware's Easy Target: Lessons from the 23% Surge

    Academic environments face heightened risk because their collaboration-driven environments are inherently open, making them more susceptible to attack, while the high-value research data they hold makes them an especially attractive target. The question is not if this data will be targeted, but whether universities can defend it swiftly enough against increasingly AI-powered threats.

  • hand typing on laptop with security and email icons

    Copilot Gets Expanded Role in Office, Outlook, and Security

    Microsoft has doubled down on its Copilot strategy, announcing new agents and capabilities that bring deeper intelligence and automation to everyday workflows in Microsoft 365.

  • Graduation cap resting on electronic circuit board

    Preparing Workplace-Ready Graduates in the Age of AI

    Artificial intelligence is transforming workplaces and emerging as an essential tool for employees across industries. The dilemma: Universities must ensure graduates are prepared to use AI in their daily lives without diluting the interpersonal, problem-solving, and decision-making skills that businesses rely on.

  • business man using smart phone in office

    Microsoft Copilot Adds Voice Commands, Teams Collaboration, Local Data Processing

    Microsoft has introduced new features within its Microsoft 365 Copilot offering, aimed at making further foothold in the enterprise, including voice-based interaction, group collaboration tools, and an expansion of in-country data processing.