HeartLab
Compliance

Two-Step Verification (2FA)

Enable or remove two-step verification for HeartLab accounts that use username and password sign-in.

Two-Step Verification (2FA)

Enabling two-step verification (2FA) is strongly recommended to help safeguard access to HeartLab.

After entering a username and password, users must also enter a temporary verification code generated by an authenticator application.

This helps:

  • Protect user accounts from unauthorized access
  • Improve account security
  • Reduce the risk of compromised passwords

Applies to

  • All registered HeartLab users using username/password authentication
If your organisation uses Single Sign-On (SSO), two-step verification is typically managed through your organisation’s identity provider (for example Microsoft 365) rather than directly within HeartLab.

Enable Two-Step Verification

Before enabling 2FA:

  1. Install an authenticator application on a mobile device.

Supported authenticator apps include:

  • Microsoft Authenticator
  • Google Authenticator
  • Authy

To enable 2FA:

  1. Sign in to HeartLab.
  2. Select your profile icon in the top-right corner.
  3. Navigate to Settings → My Account → Security.

  1. Select Setup Two-Step Verification.
  2. Follow the on-screen prompts.
  3. Sign out of HeartLab.
  4. Sign in again using your username and password.
  5. Open your authenticator app and enter the verification code when prompted.
  6. Select Verify to complete sign in.

Remember Trusted Devices

When signing in, users can optionally select:

  • Remember this device for 30 days

This reduces how often verification codes must be entered on trusted personal devices.

Only enable trusted device settings on secure personal or organisation-managed devices.

Disable Two-Step Verification

If you wish to disable 2FA, remove it from HeartLab before deleting the account from your authenticator application.

To disable 2FA:

  1. Navigate to Settings → My Account → Security.
  2. Select Remove Two-Step Verification.

  1. Enter your password to authorise removal.

Additional Notes

If you lose access to your authenticator device, contact your HeartLab administrator or HeartLab Support for assistance regaining account access.
Authentication behaviour may vary depending on organisational security policies and identity provider configuration.

SFTP Reports

Configure secure SFTP delivery for finalized HeartLab reports.

Minimum System Requirements

Minimum recommended operating systems, browser versions, and performance requirements for HeartLab.

MFR
Manufacturer
HeartLab Limited 305 / 150 Karangahape Road Auckland 1010 New Zealand
UK REP
UK Responsible Person
Casus UKRP Ltd 107-111 Fleet Street London EC4A 2AB United Kingdom
AUS
Australian Sponsor
Emergo Australia Level 20 Tower II Darling Park 201 Sussex Street Sydney NSW 2000 Australia
MD Applies to HeartLab v7.2 and above Effective 0000-00-00 eIFU version 0.0.0 UDI-DI 09421907090023