Skip to main content
All CollectionsmyHSA FAQ
Best Practices for Keeping Your myHSA Account Secure
Best Practices for Keeping Your myHSA Account Secure
Danielle Constantine avatar
Written by Danielle Constantine
Updated over 4 months ago

Hey there! At myHSA, we take your security seriously, and we want to help you keep your account safe. Here are some best practices to ensure your myHSA account stays secure

1. Enact Multi-Factor Authentication (MFA)

  • Why? MFA adds an extra layer of security by requiring more than just your password to log in. This makes it much harder for anyone to access your account without your permission.

  • How? Head over to your settings tab and activate MFA. It’s quick and easy!

2. Keep Your Login Credentials Private

  • Why? Sharing your login information can put your account at risk.

  • How? Never give your login credentials to anyone, unless they are a person you trust who needs to submit claims on your account (a dependent). Pro-tip: myHSA Support agent will never ask for your password.

3. Change Your Password Regularly

  • Why? Regularly updating your password can prevent unauthorized access.

  • How? Set a reminder to change your password every few months. It's a small step that goes a long way.

4. Use Unique Passwords for Different Accounts

  • Why? Using the same password across multiple sites increases your risk. If one account gets compromised, others can too.

  • How? Create a unique password for myHSA that you don't use anywhere else. Password managers can help you keep track of them all.

5. Monitor Your Account Activity

  • Why? Keeping an eye on your account can help you spot any unauthorized activity quickly.

  • How? Regularly check your myHSA account to make sure you recognize all the claim activity!

6. Use Strong Passwords

  • Why? A strong password is your first line of defense.

  • How? Use a mix of letters (uppercase and lowercase), numbers, and special characters. Avoid using easily guessable information like birthdays or common words.

7. Log Out After Each Session

  • Why? Logging out prevents unauthorized access, especially on shared or public devices.

  • How? Always log out from your myHSA account when you’re done, especially if you're using a public or shared computer. But don't worry, if you forget, our system will log you out after some time of no activity.

8. Keep Your Devices Secure

  • Why? Your devices are gateways to your accounts.

  • How? Ensure your devices have up-to-date antivirus software, and avoid logging in from unsecured Wi-Fi networks.

9. Be Cautious with Public Wi-Fi

  • Why? Public Wi-Fi networks are often less secure.

  • How? Avoid accessing your myHSA account from public Wi-Fi. If you must, use a VPN for added security.

10. Update Your Software Regularly

  • Why? Software updates often include important security patches.

  • How? Keep your browser, operating system, and any apps you use to access myHSA up-to-date.

Remember, your security is a team effort! By following these best practices, you can help ensure your myHSA account remains safe and secure. If you ever have any questions or concerns about your account security, don't hesitate to reach out to our support team at support@getmyhsa.com.

Did this answer your question?