Having worked for a major hospital network in Florida, I can tell you that this is more terrifying than the public can possibly understand. IT Security in hospitals is ABYSMAL compared to other industries. You’d be better off carrying around a manila folder with your records.
My company does HIPAA security assessments for hospitals. I’ve never seen one that meets all the requirements, or even most. Very poor security in the majority.
Their control of paper records was even worse.