Password Security

Throughout the day, you may have to log in to many different websites, and Visit Tracker is probably one of them. With so many different logins to maintain, the temptation is to have your computer save your password. This is a HIPAA violation. Visit Tracker stores confidential and private data so it is important that you follow HIPAA compliance.  Visit Tracker will never save your password. This is a setting on your computer and we recommend you turn this setting off.

Password Management

With so many passwords, the problem is trying to remember them all!  A password management program lets you store and organize passwords in a single spot, so a master password gives you access to your password database. You can pay a small monthly fee for a service like Dashlane, 1Password, LastPass, etc., to securely keep your passwords.

It is important to talk to your Supervisor and/or IT Department before you install one of these programs. They may or may not allow this, or they may have a preferred program. Do your research and use these programs wisely.

Creating Passwords

Your data will be more secure with passwords that are unique and strong. But what exactly makes a password strong? This list of Dos and Don’ts will help you create a strong password to keep your data safe.

Do:

  • Do use 10-15 characters for each password. The longer, the better.
  • Do consider using a phrase or sentence you can easily remember your password including numbers and special characters.
  • Do use special characters in atypical places. For instance, use a number in the middle of a word rather than before or after it.
  • Do consider length more than complexity. Studies show that a 15-character password with special characters is more secure than a short one of all unique characters like 5&Hq%.

Don’t:

  • Don’t use easily guessed passwords like family members’ names or birthdates.
  • Don’t use single words found in the dictionary such as watermelon or even watermelonseeds as standalone passwords.
  • Don’t reuse passwords at multiple sites.
  • Don’t share your passwords with anyone. If you have to, immediately change your password as soon as someone else has used it.
  • Don’t use passwords based on adjacent keys on the keyboard, like asdfjkl;

 

Stay HIPAA Compliant, Friends!