Account Security

Version: 0.1.1 | Last Updated: 2026-01-07

Overview

CareForMeds protects your health information with bank-level security and HIPAA compliance. This guide explains how to keep your account secure.

Your Privacy is Protected

CareForMeds is HIPAA-compliant, meaning:

  • Your health data is encrypted in transit and at rest
  • Access is strictly controlled and logged
  • We never sell or share your data with advertisers
  • Only you and your authorized caregivers can see your information

Password Best Practices

Creating a Strong Password

Your password should be:

  • At least 12 characters long
  • Mix of character types: uppercase, lowercase, numbers, symbols
  • Not based on personal information: No birthdays, names, addresses
  • Unique to CareForMeds: Don't reuse passwords from other sites

Good examples:

  • Sunrise#Coffee2024!
  • My3DogsLoveTreats@Home
  • BlueSky_rainy_Day99

Bad examples:

  • password123 (too common)
  • John1965 (personal info)
  • qwerty (keyboard pattern)

Changing Your Password

  1. Click your name in the top right corner
  2. Select Profile or Settings
  3. Click Change Password
  4. Enter your current password
  5. Enter and confirm your new password
  6. Click Save

Two-Factor Authentication (2FA)

2FA adds an extra layer of security by requiring a code from your phone in addition to your password.

Setting Up 2FA

  1. Go to Settings > Security
  2. Click Enable Two-Factor Authentication
  3. Choose your method:
    • Authenticator App (recommended): Google Authenticator, Authy, etc.
    • SMS: Text message codes
  4. Follow the setup instructions
  5. Save your recovery codes in a safe place

Using 2FA

After setup, when you log in:

  1. Enter your username and password
  2. Enter the 6-digit code from your authenticator app or SMS
  3. You're logged in

Recovery Codes

When you enable 2FA, you receive recovery codes. These let you log in if you lose access to your phone.

  • Store them safely (printed, password manager, secure note)
  • Each code works once then expires
  • Generate new codes if you run out or suspect they're compromised

Session Management

Automatic Timeout

For your safety, CareForMeds automatically logs you out after a period of inactivity. This protects your data if you forget to log out on a shared computer.

  • Default timeout: 30 minutes
  • You can adjust this in Settings > Security

Active Sessions

View and manage devices logged into your account:

  1. Go to Settings > Security > Active Sessions
  2. See all devices currently logged in
  3. Click Log Out next to any session you don't recognize
  4. Click Log Out All Other Sessions to secure your account

Login Notifications

Get alerted when someone logs into your account:

  1. Go to Settings > Security
  2. Enable Login Notifications
  3. Choose notification method (email, push, or both)

You'll be notified of:

  • New device logins
  • Logins from new locations
  • Failed login attempts

Password Reset

If You Forgot Your Password

  1. Click Forgot Password on the login page
  2. Enter your email address
  3. Check your email for a reset link
  4. Click the link and create a new password
  5. Log in with your new password

Note: Reset links expire after 1 hour for security.

If Your Account is Compromised

  1. Change your password immediately
  2. Enable 2FA if not already enabled
  3. Review active sessions and log out unknown devices
  4. Check your email for unauthorized changes
  5. Contact support if you need help

Caregiver Access

When you authorize a caregiver:

  • They can view your medications and adherence
  • They cannot change your password or security settings
  • You can revoke access at any time
  • All their access is logged

Managing Caregiver Access

  1. Go to Settings > Caregivers or Family Access
  2. View currently authorized caregivers
  3. Click Remove to revoke access
  4. Click Add Caregiver to authorize someone new

Data Export

You can download all your data:

  1. Go to Settings > Privacy > Export Data
  2. Select what to export (medications, doses, all data)
  3. Click Export
  4. Download the file when ready

Account Deletion

To permanently delete your account:

  1. Go to Settings > Privacy > Delete Account
  2. Read the warning carefully
  3. Enter your password to confirm
  4. Click Delete My Account

Warning: This permanently deletes all your data and cannot be undone.

Security Tips

  • Don't share your password with anyone
  • Use a password manager to store complex passwords
  • Log out on shared computers when done
  • Keep your email secure (it's used for password resets)
  • Review caregiver access periodically
  • Report suspicious activity to support immediately

See Also

Back to Help Center
Version 0.1.1

Related Guides

Scanning Prescriptions Logging Doses Tracking Adherence Push Notifications Install App

Need more help?

Contact Support