The short answer: "Yes".


Under the Business Associate Agreement (BAA) signed during on-boarding, clinicians are obligated to secure Protected Health Information (PHI) data through technical and process-driven means. Two-factor authentication provides an extra layer of protection against hackers taking your password and logging in as you.


Passwords have been the mainstream form of authentication since the start of the digital revolution. But, this security measure is far from infallible. Here are some worrying facts about this traditional security measure:

  • 90% of passwords can be cracked in less than six hours.
  • Two-thirds of people use the same password everywhere.
  • Sophisticated cyber attackers have the power to test billions of passwords every second.
  • The vulnerability of passwords is the main reason for requiring and using 2FA.

The best way to keep your accounts secure are to follow recommended password requirements such as 8 character length, enable multi factor authentication, and store your passwords in an encrypted password vault application. Make sure to never use the same password twice!