Back to Blog
encryptioncompliancesecuritypiiphi

Field Level Encryption: One Module I Reuse Everywhere (Simply Explained)

A plain-language guide to field level encryption. No jargon, no tech speak, just what it means for your business.

By Mike Hodgen

Want the full technical deep dive? Read the detailed version

I Kept Solving the Same Problem Badly

Here's something I noticed only after it cost me time on three different projects.

Every time I built an app that handled sensitive data (a health monitoring system, a payments startup client, an app holding people's financial details), I protected that data differently each time. Inconsistently. Badly, if I'm being honest.

Sometimes I'd scramble one piece of sensitive information but forget the one right next to it. Sometimes I'd skip the record of who looked at it because we ran out of time. Every app was a one-off, built by whoever was at the keyboard that week.

The worst part? None of these apps could answer the one question a regulator or a nervous enterprise customer always asks: who looked at this person's record, and when?

That question has nothing to do with whether the data is locked up. You can lock everything down perfectly and still have no idea who opened it. And when you can't answer that, "we protect your data" sounds like a guess, not a real promise.

So I stopped reinventing the wheel. I built one tool that protects sensitive data the same way every time, and now I drop that same tool into any project that touches health, financial, or personal information. Same rules, same record-keeping, same testing. One decision, made once, used everywhere.

Locking the Valuables, Not Just the Building

Let me explain the difference between two kinds of protection, because companies confuse them constantly.

Most vendors who say "your data is encrypted" mean the equivalent of locking the office building at night. That only helps if a thief physically breaks in and walks off with a hard drive. It does nothing if someone gets in through the front door with a stolen keycard, which is how most real breaches happen.

What I do is different. I lock each valuable item in its own safe, inside the building. A Social Security number, a medical note, a bank account. Each one sits there as scrambled gibberish.

So if someone gets in and grabs the whole filing cabinet, they get garbage. No key, no data.

And here's the part that matters most: the key to those safes is never stored in the building. It lives somewhere completely separate and gets handed to the app only when it's actually needed. If the key sat next to the data, the whole thing would be theater. A thief would grab the data and the key in one trip.

The Trick That Makes It Reusable

The thing that turns my tool from a one-time science project into something I use everywhere is one simple idea: every locked item carries a tiny label.

That label says which version of the key was used to lock it. It's only a few characters long, but it changes everything.

When the app needs to read a piece of data, it checks the label first. The label says "this was locked with key #2," so the app grabs key #2 and opens it. Without that label, you'd have to remember by hand which key opened which item. Impossible the moment you have more than one key in play.

This label is also what lets me change keys without taking the whole system down.

Why Changing Keys Used to Be a Nightmare

Ask most engineering teams when they last changed their security keys, and you'll get a long, awkward pause.

The honest answer is usually never. Because they assume changing the key means unlocking and re-locking every single record in one giant, risky operation. So they never do it. The keys sit there for years, which is exactly the danger they were trying to avoid in the first place.

My labeling trick makes this gradual instead of catastrophic.

I introduce a new key. From that moment, anything new gets locked with the new key. Old records? They still open fine, because their label points to the old key. Two keys live side by side, and the tool handles both automatically. Nothing breaks. Nobody schedules a scary midnight maintenance window.

If a key ever does get exposed, that's when I run a deliberate, controlled re-locking of everything in the background, at a pace I control. The point is that routine key changes are boring and invisible, and emergencies are a separate job. Boring is exactly what you want in security. The exciting security stories are always the ones where something went terribly wrong.

The Part That Actually Passes an Audit

Locking the data is half the job. The other half is keeping a record of every time someone opens a safe.

Every time my tool unlocks a piece of sensitive data, it writes down which record was opened, who opened it, and exactly when. So when the question comes (and with regulated data, it always comes), I run a quick search instead of launching a panicked investigation.

Two rules make this work.

First, the record never includes the actual sensitive data. It notes that someone opened the safe, not what was inside. There's no point locking everything up if you then dump the contents into a logbook anyone can flip through.

Second, that logbook can't be edited by normal users. Someone who breaks into a regular account can't quietly erase their own tracks.

Here's how I put it to every CEO I work with. "We protect your data" is table stakes. Everyone says it. "We can show you a complete, tamper-proof record of every person who accessed this file, with names and timestamps, in seconds" is what passes an audit and what calms down an enterprise customer checking you out.

I Test It So You Don't Find Out the Hard Way

Security code you can't trust is worse than none at all, because it gives you false confidence.

So my tool ships with a built-in set of 14 tests, and those tests travel with it into every project. The tests confirm the obvious stuff works (what goes in comes back out unchanged) and the scary stuff works too (if someone tampers with a locked record by even one character, it refuses to open instead of handing back corrupted gibberish).

Either every test passes, or the tool doesn't go live. No "it worked when I tried it once."

What This Means If You Hold Sensitive Data

If you're a CEO sitting on health, financial, or personal data, two fears are probably nagging at you.

One: that doing this properly is a huge custom project you'll have to fund and babysit. Two: that if a regulator or a big prospect asks who accessed a specific record, you genuinely don't have an answer.

A properly built tool turns the first fear into a one-file decision. And it turns the second into a quick search instead of a fire drill.

Let me be straight about the limits, because that matters more than the sales pitch. This is one layer. It doesn't replace good passwords, proper access controls, or the legal paperwork some industries require. If those are broken, this won't save you.

What it does do is specific and valuable. It makes stolen data useless to whoever steals it, and it makes "show me everyone who opened this record" a question you can answer in seconds. Those are two of the things that go wrong most often and embarrass companies most publicly.

If you're handling regulated data and you're not confident your protection would survive a serious security review, that's exactly what I standardize when I come in. One tool, one standard, across everything you ship, instead of five different approaches and zero confidence in any of them.

Ready to bring AI leadership into your company?

I work with a small number of companies at a time. If you're serious about AI, apply to work together and I'll review your application personally.

Apply to Work Together

Get AI insights for business leaders

Practical AI strategy from someone who built the systems — not just studied them. No spam, no fluff.

Ready to automate your growth?

Book a free 30-minute strategy call with Hodgen.AI.

Book a Strategy Call