Creating a strong password
Protect yourself and your personal information by creating a strong password that is unique to you and your account.
Your password is the first line of security that guards your personal information, and a strong password increases the security of your info. Simple passwords can be easily guessed – and if someone can guess your password, they may be able to access your account and view your info. If you use the same password for multiple accounts, those accounts could also be compromised. Don’t worry – we have some tips and tricks for creating a strong password.
Creating your password
- Use a long passphrase or sentence instead of a word.
- Some words are very commonly used as passwords (for example, password1). Avoid these! They are very easy to guess.
- Alphanumeric substitutes (for example, PA$$W0RD) are easy to bypass and not very effective.
- Create a passphrase that is unique to you.
- Don’t reuse the same password across multiple accounts. It’s tempting to use the same password - but if one account is compromised, every account where you’ve used that password could be in jeopardy.
Remembering your password
- A passphrase is a great option. A sentence or phrase is easy for you to remember, but difficult for someone else to guess.
- Use a password manager to keep track of your passwords – that way you can set up unique passwords for every account without having to always remember which is which!
Enhanced account security
- Set up 2-step verification for an extra layer of security. 2-step verification adds an additional step (like receiving a code via text message) whenever you sign in or edit sensitive information. This means that your account is not accessible through the password alone.
- Don’t share your password with anyone else. We'll never ask for your password outside of the login process.
- If someone else needs to access your account, use delegate access to allow access to your account without sharing your secure information.
- Change your password or passphrase often, for additional security. If you suspect your account has been compromised, change the information in your account to prevent others from regaining access to it.
Avoid exposed passwords
- We check new passwords against databases of real passwords that have been exposed in data breaches. If we identify the password as being exposed, we'll let you know and recommend using a different password.
- Previously exposed passwords have a much greater risk of being used to take over other accounts, so we recommend against using them. A simple password might seem easier in the short-term, but we want to keep you and your account safe in the long-term too!
- You can visit this webpage to learn more about creating a strong password and test the strength of your current passwords.