If you care about HIPAA compliance or could care less you still need to understand your liability for any electronic protected health information (ePHI) stored on your companies systems. More important than how the data is stored on your systems is how you dispose of systems once their usefulness has run its course.