HIPAA Information Security

Token-based proximity authentication means auto-enforcement of password and workstation security policies. Then HIPAA Security Rule compliance is easier with automation. Defense-in-depth security architecture that works in complement to group policy. Finally, you can ensure that only authorized users have access to permissible information. Furthermore, GateKeeper helps healthcare clinics effectively protect PHI. 

GateKeeper decreases the potential exposure risks of ePHI

24/7 monitoring and auditing of all log-in attempts

Automatically prevent unauthorized access to sensitive systems

Minimum password length auto-enforced and typed

Dynamic multi-factor authentication for user-friendly access

Contact GateKeeper for more info.

Meet strict HIPAA data security compliance standards with GateKeeper Enterprise.

Health professionals use computers for short intervals. Then moving frequently and using multiple workstations. Therefore, GateKeeper maximizes the safety and efficiency of the working environment by giving caregivers more secure and faster access to workstations and websites. By providing a wireless access key to each user, GateKeeper simplifies the login processes. As a result, eliminating complex passwords, saving time, and maintaining strict HIPAA information security standards.

Auto-lock unattended workstations

Hands-free 2-factor authentication for faster EHR login

Exceed HIPAA and HITECH compliance standards

Real-time user location and login activity monitoring

Faster patient response time with reduced login latency

GateKeeper Enterprise Video


Reduce time spent logging in and out of PCs. Then, caregivers can spend more time on patient care.

GateKeeper Enterprise Video


Auto-lock unattended computers. Moreover, mitigate internal risks with strict HIPAA data security standards.

GateKeeper Enterprise Video


Easily set access to multiple computers. Above all, simplify the complex tasks of managing passwords.



Know who accessed each computer in real time. Most importantly, accurately audit logs on shared PCs.

GateKeeper HIPAA Information Security Compliance Summary

Security mechanism that increases security and decreases complexity of access. Then doctors and nurses can meet HIPAA compliance with automation. The U.S. Health Insurance Portability and Accountability Act requires safeguards against unauthorized users and information breach. Non-compliance by employees pose the greatest security risks. Therefore, see how GateKeeper helps you adhere to HIPAA data security compliance. Then everyone can stress less about passwords in the clinic.

SectionKey ActivityPerformance CriteriaGateKeeper Solution
164.306(b)Flexibility of Approach(1) Covered entities and business associates may use any security measures that allow the covered entity or business associate to reasonably and appropriately implement the standards and implementation specifications as specified in this subpart.
(2) In deciding which security measures to use, a covered entity or business associate must take into account the following factors:
(i) The size, complexity, and capabilities of the covered entity or business associate.
(ii) The covered entity's or the business associate's technical infrastructure, hardware, and software security capabilities.
(iii) The costs of security measures.
(iv) The probability and criticality of potential risks to electronic protected health information.
GateKeeper increases the security and decreases the access complexity of the covered entity by providing an automatic mechanism for the locking of a workstation when a user is no longer in proximity. A user does not have to manually lock their workstation when they are no longer present. This security mechanism decreases the potential risks to ePHI.
164.308(a)(5)(ii)(C)Security Awareness, Training, and Tools -- Log-in MonitoringProcedures for monitoring log-in attempts and reporting discrepancies.GateKeeper Enterprise provides auditing and monitoring of all login events.
164.310(c)Workstation SecurityImplement physical safeguards for all workstations that access electronic protected health information, to restrict access to authorized users.GateKeeper provides a mechanism to automatically prevent unauthorized access to unattended computers.
164.312(a)(2)(i)Access Control -- Unique User IdentificationAssign a unique name and/or number for identifying and tracking user identity.Each GateKeeper token (key) address is associated with a user identity. Users can be identified and tracked by the hardware/software token identifier.
164.312(a)(2)(iii)Access Control -- Automatic LogoffImplement electronic procedures that terminate an electronic session after a predetermined time of inactivity.Combined with an organization’s group policy for automatic logoff, GateKeeper provides an additional layer of access control by automatically locking a workstation when a user is no longer in proximity. Unlike timeout policies, GateKeeper reacts instantly to a user leaving their terminal.
164.312(b)Audit ControlsImplement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.GateKeeper audits user login activity within the enterprise platform at all times.
164.312(d)Person or Entity AuthenticationImplement procedures to verify that a person or entity seeking access to electronic protected health information is the one claimed.GateKeeper's secure identity and access management solution uses a hardware or software token associated with an active directory account to create a strong multi-factor authentication system.
Capterra Best Value for Authentication Jun-20
Capterra Ease of Use for Authentication Jun-20

See GateKeeper Enterprise advanced MFA in action.

Take a self-guided tour of how you can evolve from passwords. Then you're really saving time with automation.