You’re Not Compliant If You’re Sharing Logins & Passwords
If your organization is sharing passwords to keep up with the demand of the everyday hustle of healthcare, it doesn’t matter. You have to stop now.
Let’s dispel some of these myths of password sharing, shall we?
There’s no harm in casually giving your username and password to your coworkers because they perform the same job functions as you do.
You’re helping with productivity and being a team player if you share your login info.
A universal login is permitted for everyone to use.
Sharing passwords is a huge violation of HIPAA compliance.
It doesn’t matter the circumstances or how hard it is to obtain access, each employee must have their own unique credentials for ALL PORTALS to access PHI.
What You Can Do
Employees, if you know that this is common practice within your work environment, demand that you be given your own access. Or if you can, create your own.
Managers, HIPAA doesn’t care that you don’t need one more thing to do. Take the time to give out proper permissions to your staff.
Any usernames and passwords of former employees should not be used either. These accounts should be deactivated immediately.