The main difference is the policies and procedures that set the rules for your use of the mobile device. Many things are the same: the risks involved with using mobile devices and your responsibility to protect health information. If you are using a mobile device, regardless of who owns it, it is your responsibility to understand and follow any rules that apply to your use of that mobile device. Read your organization's mobile device policy. Take any mobile device privacy and security training and education the organization offers. Read more about you, your organization, and your mobile device.
All the tips and information on the Mobile Device Privacy and Security subsection of HealthIT.gov can apply to personally owned and organization-provided mobile devices. Organizations decide which security measures and rules to include in their policies and procedures.