TLS (the latest available version), Transparent Data Encryption (TDE), or technologies that provide equivalent or greater confidentiality protection for data in transit and at rest are recommended for any databases containing Protected Health Information (PHI), regardless of the hosting provider. The same recommendation applies for databases holding other forms of sensitive data.