Question: Our strata management company is introducing compulsory two-factor authentication (2FA) to access the online portal. Is compulsory two-factor authentication justified?
Our strata management company is introducing compulsory two-factor authentication (2FA) to view documents in their online portal.
I will no longer be able to give my login and password to my family or helpers. It also means I have to share my private mobile number with my strata company, which is required for 2FA.
Given the scheme’s information is not private, is compulsory two-factor authentication justified? 2FA is usually used to stop financial crime and protect secrecy and privacy.
Answer: This authentication has likely been introduced as a security measure to protect the privacy of all owners.
This authentication has likely been introduced as a security measure to protect the privacy of all owners and to thwart unauthorised use of the owners corporation’s/owners’ private details. While the information recorded on a strata roll is accessible, it is not public, i.e. only persons authorised by owners may access such information. Having this two-factored authentication (especially with a text message or email to a secondary device) is not unusual in any industry.
Leanne Habib Premium Strata E: info@premiumstrata.com.au P: 02 9281 6440