• More than eight characters - the longer and more complex your password the harder it is for someone to decipher it
  • Made up of a variety of letters, numbers and symbols
  • Unique (not re-used for other accounts or apps)
  • Current (changed at least every 90 days)
  • Easy to remember, difficult to guess (avoid dictionary words, dates, names etc).

Don't use the same password to access all sites you use, instead, create variations and change them at least every 90 days. Use a unique password for each of the most important systems and sites that you visit, from logging in to a company laptop to completing other activities such as banking, online shopping and email.

Choose passwords for your online services that are easy for you to remember, but difficult for anyone else to guess. Don't use every day or dictionary words, parts of your name or that of your family members, your date of birth, mobile number or other easily guessed passwords such as sequential numbers.

Create a password based on a phrase that only you know.  If you're saving for a trip to Hawaii, your password could be: $5kH?Al0ha! Alternatively, if vegemite is your favourite breakfast spread, try: <3VegeYum1. Naturally, don't use these exact examples because only you should hold the secret.

Don't write down your passwords or pin numbers. Remember, your passwords unlock your accounts, so never share them with anyone. If you need to record a hint, make sure that it is disguised and secured.

Shopping and banking placeholder image
  • Avoid short, predictable passwords
  • Mix it up - combine a mixture of letters, words and symbols
  • Abbreviate a memorable phrase with fragments of letters, numbers and symbols
  • Your password is private, keep it safe.