It is highly important with the increase in data breaches that we are able to have an extra step to verify like an authenticator app or text message. This is essential and if you don't do this soon, you will lose providers.

2-step verification/ 2 factor verification is pretty much a given in industries like this one. It has been suggested numerous times but nothing has been done about it. Can it please be developed and implemented? Thank you.

this issue is at the forefront of our system needs, right now. these requests have been noted since 2016 from what i can see. I recognize the amount of supporters weighs in to the priority, but i would imagine threat of security and protection of health information should be at the top of the list in this critical time. the rest of the program suggestions in my opinion ALL CAN WAIT for this to be enacted, especially as the world is moving to more online and digital therapy space and everything is more vulnerable. I was told by our IT folks that Facebook and iphones have more security than our therapy software in Theranest. We will be forced to change programs if this feature is not pushed forward quickly.

Bump. As an information system security professional (CISSP) I second this suggestion. The data is too valuable to NOT inforce complex passwords and/or two-factor auth.

There needs to be an additional login step with a security question, or a text code. The Theranest security is so weak! I worry frequently that my account will be hacked, and client information will be exposed.

I've mentioned this idea previously, but I find it somewhat ludicrous that Theranest doesn't have a two-factor authentification process for login. Given that we're dealing with client health records, I'd feel a lot more secure with a more advanced login process. I know this has been suggested in the past, yet I haven't seen any response from Theranest.

Please create a double verification option for logging in, like gmail does for added security if someone logs on from not your main computer.

I would feel more secure if Theranest had a more advanced login system. Would it be possible to ask security questions, or to have a login system that sends a code to our phone after the password has been entered? The simple password login seems archaic, and concerns me given the highly confidential information being stored in my account.

Hi again. Just noticing the original comment started on July 14, 2017. This is almost 2 years (11 months at time of this) and still not addressed? Unacceptable. Seriously considering switching systems if not changed in 'near' future. This is something that can be implemented in a few months of back-end work.

I wholeheartedly endorse this as an option. Prior to my new position with this group, I had been using another charting system that required creation of 2 passwords (primary & secondary) and then required both passwords and a captcha for initial sign-on with any unrecognized devices. Forgot passwords? That was a chore to authenticate recovery, but definitely left me sensing that security and privacy was this firm's utmost priority.

Support two factor authentication, and not just SMS because that can be intercepted. Ideally support both authenticator apps and U2F keys (like Yubico).

Two step verification!!! Forced password changes after every few months!!! Way more emphasis on securing individual accounts!!!

Single Sign On with SAML or OAuth

Although this has been proposed before, I am REALLY hoping that Theranest is working on providing these additional security measures to protect access to accounts. Aside form a mere password there are no other additional security safeguard options in place, to protect accounts and all the important information we hold. It is almost 2019, financial, legal, health and other mental health entities have improved their security features... and continue to do so all the time. Theranest has to do so as well- this is not the kind of industry where you sit and wait for something terrible to happen to your EHR before you fix it... it needs to be as safe as is possible as it can be today and every day forward. I look forward to a positive outcome to this issue in the short term.

Although this has been proposed before, I am REALLY hoping that Theranest is working on providing these additional security measures to protect access to accounts. Aside form a mere password there are no other additional security safeguard options in place, to protect accounts and all the important information we hold. It is almost 2019, financial, legal, health and other mental health entities have improved their security features... and continue to do so all the time. Theranest has to do so as well- this is not the kind of industry where you sit and wait for something terrible to happen to your EHR before you fix it... it needs to be as safe as is possible as it can be today and every day forward. I look forward to a positive outcome to this issue in the short term.

Is there a way to up the security to have a two step verification if you would like? I recently had an issue with hacking and would like to assign a two step verification to login to better help protect my client files( So I can know in real time if someone was to access theranest).

This is even more important for those of us storing credit card information!

This is an old request, but I agree, multifactor authorization is an important step in making access more secure.

The use of Google Authenticator (or similar app or the use of single access codes via SMS) can provide an extra layer of security for logging into the TheraNest account. This lowers the probability that a compromised password would risk protected health information. This should be a standard feature for this type of service.