To better protect our patients' sensitive information, we have implemented two-factor authentication (2FA) for MyChart access. This added security layer is one of the most effective tools we have to prevent unauthorized access to patient records. 2FA is a security process that requires users to provide two distinct forms of identification to access an account or system:
- Something the patient knows – e.g. their username and password.
- Something the patient has – typically a phone or computer to receive a temporary verification code or approval prompt via email or text.
While usernames and passwords can sometimes be guessed or stolen without a patient's knowledge, it is much harder for an unauthorized individual to gain access to both their password and mobile device. By combining these two steps, we significantly reduce the risk of unauthorized access.
How it works
- When logging in to MyChart, the patient will choose their preferred delivery method (text or email) to receive a code, which will be sent immediately.
- They will then input their verification code into the provided field.
- The patient will need to navigate away from their MyChart App to retrieve their code.
- When navigating away from the MyChart App, they need to leave the app running in the background while retrieving the verification code from text or email. If the patient closes the app completely, they will need to request a new code.
- After a patient logs in with a device and completes the two-factor authentication, that device can be remembered for 30 days. After 30 days, the device must complete the two-factor authentication again.
Patients can receive assistance with MyChart issues via phone (812-375-3010), email ([email protected]) or in person at WellConnect at NexusPark.
As cyber threats become more advanced, industry leaders like Epic are requiring stronger safeguards. Implementing 2FA helps us meet these expectations and reinforces our commitment to keeping patient information safe.