Logging Out & HIPAA Quick Guide for Clinicians

To keep client information safe and comply with HIPAA, please follow these security practices every time you use Practice EHR:

• End of Session Logout
  Always log out when you finish your work or step away from your computer/device.

  • On desktop: click your profile or the gear icon (top right) → select Log Out.
  • On mobile app: tap the menu (☰) → select Log Out.

• Automatic Timeout
  Practice EHR is set to time out after a period of inactivity. This protects you if you forget to log out. However, do not rely on this—log out manually whenever you leave your device.
• Passwords & Access

  • Use your individual login only—never share credentials.
  • Do not save passwords in browsers on shared computers.
  • Change your password immediately if you suspect it’s been compromised.

• Device Security

  • Always access Practice EHR on a secure, password-protected device.
  • Make sure your device automatically locks after a short period of inactivity.
  • When using the mobile app, ensure your phone has biometric login (Face ID/fingerprint) or a secure passcode enabled.

• HIPAA Reminders

  • Do not download or store PHI (Protected Health Information) outside of Practice EHR.
  • Avoid leaving charts open on a shared or visible screen.
  • Use secure in-system messaging instead of email/text for client communication.

✅ Best Practice: Treat logout as the “last step” of every session—after you finish your notes, lab orders, or messages, click Log Out before closing your browser or app.