Account security & password
Overview of password complexity requirements and account lifecycle policies.
Password requirements
When creating or updating your password, our system performs an automated security check. Your password must meet the following four criteria:
-
Length: Must be at least 9 characters.
-
Unique to you: Cannot be similar to your email, first name, last name, or username.
-
Format: Cannot consist of only numbers (must include at least one letter or symbol).
-
Strength: Must not match any of the 20,000 most common passwords (e.g., "qwerty" or "password123").
Maintenance & deactivation
How often do I need to change my password? We do not have a forced password reset or change policy. We encourage users to maintain one strong, unique password rather than changing it frequently.
Why is my account deactivated? For security purposes, user accounts are automatically deactivated if they remain inactive for 90 days.
For more details on how we manage account access, please refer to our Setting up user accounts article in the On-boarding section.