The 12-character password minimum was implemented following industry standards and best practices to protect the patient's account, patient data, and the OnPatient platform.
OnPatient account passwords must adhere to the following requirements:
- A 12-character minimum and 64-character maximum length
- Meet three of the following criteria:
- At least one capital letter
- At least one lowercase letter
- At least one number
- At least one special character
- No sequential or repetitive characters (for example, 12345 or aaaaaa)
- No context-specific passwords (for example, onPatient2024ppp)
- No commonly used passwords (for example, p@ssw0rd)
- The same password may not be reused for at least five password change periods
Use a password manager to secure passwords and a password generator to create strong passwords.
