Secure logins for 'my account' environments in the care sector
Published: 17 June 2019
Medical data exchange needs to be improved. And ‘my account’ environments have an important role to play in that context. However, such environments need to be well designed. Writing in Zorg/ICT magazine, Connectis’s eID Specialist Esther Makaay highlighted five focus points for setting up a secure login process.
Here are the five points Esther identified:
1. Appropriate logins
When a user logs in, their identity must be reliably confirmed. DigiD, for example, provides a high level of assurance and is suitable where users will be looking up medical information or confirming appointments.
The login threshold must be as low as possible. Connectis offers several neat ways of making it easier for users to log in, without sacrificing security.
3. Multi-factor authentication support
Multi-factor authentication provides added assurance regarding the user’s identity.
When a user logs in with a social media account, for example, the information given to the service provider isn’t the same as when DigiD is used. But the care organisation needs to be able to handle the incoming data regardless.
5. Legal requirements
Under the General Data Protection Regulation (GDPR), strict rules apply to data processing. Especially where the protection of special personal data is concerned.
Public and semi-public service providers are governed by the EU’s eIDAS Directive as well.
The original Dutch-language article by Esther Makaay can be found here.
Want to know more about enabling patients and clients to log in securely to a ‘my account’ environment? Get in touch to arrange a no-strings chat about the options with a Connectis specialist.