Last week, one of our long time customers asked us about using a password management system. My initial thought was its not good to keep all your eggs in one basket. However, after doing some research password management systems and thinking about how difficult it can be to keep track of strong passwords and HIPA Compliance; I’ve changed my opinion.
In Terms of HIPA compliance
“On to the most important question: Are these Password Management Systems HIPAA compliant? Well, luckily password management programs aren’t storing Protected Health Information (PHI), so you don’t have to worry about HIPAA compliance with these programs. This means no Business Associate Agreement or Business Associate Subcontractor Agreement is needed… “ totalhippa.com
Whatever you do to manage your passwords, remember to change them frequently, and make them complicated! We’re talking uppercase, lowercase, special characters, numbers, folks, and lots of them. No writing these down. Don’t give them to anyone — and we mean anyone! And also use two factor authentication.
The one I reviewed and that I like the most is Last pass
| Pros
Enhanced multifactor authentication choices. Includes 1GB of secure online file storage. Manages application passwords. Priority customer support. No ads. |
Cons
The Paid Version Doesn’t add enough to what you can get for free. No longer offers shared folders. Price has doubled since our previous review |
Bottom Line
With LastPass Premium, you get all the powerful features of the free LastPass, along with a handful of enhancements that you don’t necessarily need. Stick with the free edition. |
You can get the free version at https://www.lastpass.com/
References for Information quoted:
https://www.totalhipaa.com/password-management-programs-hipaa/
https://www.pcmag.com/article2/0,2817,2407168,00.asp
https://www.worldnetworksystems.com/2018/02/09/two-factor-authentication/
