Quote:
Originally Posted by jkim05
Thanks for all the help guys. I run a doctor's office, and we have ~10 users max at any time. We actually don't really have any sensitive data on our computers with the exception of our scheduling/practice management software, which we currently back up onto an external HD. Our technology implementation is actually pretty outdated, but since we have no need to upgrade, we haven't. My plan is gradually begin upgrading, rebuilding and/or replacing most of the computers in this office over the next couple of years and having centralized storage would make that much simpler as I would no longer have to figure out what data is stored on what computer.
As for size, I'm thinking 500gb in a RAID 1 configuration should be sufficient, though I'm tempted to go much larger. Is it cost effective to go much larger than that? Also, is it even worth it to RAID two drives or should I just go for external backup to the NAS?
|
Yes RAID 1 (mirroring) is a good idea. It provides quick, cheap, reliable redundancy. Offsite storage is really more for disaster recovery, aka building burns down and the company has to rebuild.
Also, I have worked for a regional hospital (medical group of 7 or 8 hospitals) and you DO have sensitive data. HIPPA requires you to protect that data or
YOU (not your company/employer) can be sued or heavily fined. Even names/addresses can be considered patient data. DO NOT neglect your responsibility to protect it. I would highly recommend that you use some form of encryption. Even if it is a freebie like PGP, it's better than nothing. Most new external hard drives offer it as a feature if you go that route.
If you use encryption and it gets cracked at least you made the effort. That will usually prevent legal action against you or your company. If you do not make the effort, you are at risk should that data get compromised.