In our latest episode, we explain what therapists should know about using passkeys in their practice.
We discuss:
Why we recommend password managers
How passkeys differ from passwords
Why passkeys are simpler and safer than passwords
Which password manager we recommend
Where you can use passkeys
Things to consider when adopting passkeys
We discuss:
How to audit system access in your practice
Defining roles and responsibilities to determine access
Managing shared email accounts with email delegation
The difference between email aliases and delegated accounts
Steps to take when systems don’t allow for multiple logins
We discuss:
Why shared accounts are a no-no, and why it’s such a common practice
The HIPAA standards that are impacted by this practice
The internal and external risks of sharing admin accounts
The why and what of role-based access control
We discuss why we don’t recommend using the same training year after year (and why our system doesn’t allow it); the trainings we typically recommend for year one and why; the trainings we recommend for year two and after and why; and why now is a particularly good time to get started.
I don’t do a lot of consulting for people who’ve experienced a “security breach” in their practices. But in the last year I’ve gotten 7 inquiries about security breaches from colleagues, and every single one was from someone whose email had been hacked into. So I’d like to make sure everyone knows the two things […]