Business Associate Agreement (BAA) provided
Hashed and salted passwords
All web traffic encrypted via HTTPS & TLS 1.2
HIPAA certified support staff (24x7x365)
HIPAA Policies and Procedures in place
Encrypted database and file backups
Browser protection via Content Security Policy
Continuous system risk analysis
Multi-factor biometric data center access
Restricted employee access to PHI
Credit cards and passwords are never stored
PHI is encrypted at rest
Automatic Session Timeout
HTTPS only, via Strict Transport Security (HSTS)
Ensure your device is up to date with latest operating system security patches and updates.
Make sure you use a unique password for thera-LINK and change it often.
Don’t share your account information with anyone – including your colleagues!
Update your browser often with latest security patches. These are released frequently!
Keep an active and up to date anti-virus software on your computer to help keep the bad guys out.
LOG OUT EVERY TIME
Be sure to log out of the site if you are going to step away from your computer.