Effective passwords keep emails and online accounts protected and secure.
Passwords should be hard to guess, and there should be a different password used for each important account.
The best passwords are at least 12-15 characters long.
To make them easier to remember, passwords can be made into a sentence.
For example, #sandytoesinhawaii7 is easier to remember than a series of random numbers and letters.
Adding symbols and numbers makes it harder to guess.
No-one should use words that are associated with them, that could be easy to guess.
For example, don’t use the names of children or pets, or birthdays.
Users should not allow browsers to remember passwords.
While it is faster to have passwords automatically filled-in, it means anyone using the same device can have instant access to these accounts if they know the user name.
Users should Log out every time they have finished using a website or app, or other online service.
If a User doesn’t log out, their account remains open which means others with device access can also access the account.
The browser window should also be closed after using a website or other online service.
If a user thinks their device is being monitored by a perpetrator, they should regularly change the username and passwords of the important accounts they access, using a safe device to do so.
Passwords should not be shared with anyone else, including children if an abusive current or ex-partner is in contact with them.