Documentation
HECVAT Full v3.0.6
HIPAA
HIPA-12

Question HIPA-12

Are passwords visible in plain text, whether when stored or entered, including service level accounts (i.e., database accounts, etc.)?

Weight20
High RiskNo
RequiredNo
Compliant AnswerNo

Standard Guidance

Refer to HIPAA regulations documentation for supplemental guidance in this section.

Answering "NO"

EDUCAUSE provides no guidance here

Answering "YES"

EDUCAUSE provides no guidance here

Reason for Question

HIPAA

Follow-Up Inquiries

Refer to HIPAA documentation or your institution's Chief HIPAA Security Officer.

HECVAT Pro Advice

[Add expert insights and best practices]

Implementation Tips

[Add practical steps for SME SaaS vendors]

FAQ

[Add common questions related to this HECVAT item]

Resources

[Add links to relevant articles or tools]