Here are a few, simple password tips you can use to protect your privacy.

Do not:

• Do not use personal references, like the name of a child or pet.
• Do not use words found in the dictionary unless your password will be longer than 15 characters.
• Do not use the same password for multiple accounts.
• Do not allow your browser to remember your passwords.
• Do not always stay logged in to your account – make sure to exit completely.

Do:

• Do store your passwords in a password manager, like LastPass, 1Password, Keeper, or DashLane.
• Do use a password manager app on your phone, your computer, and as a browser extension.
• Do use a password or passcode on all mobile devices, so they are encrypted.
• Do use two-factor authentication (2FA) or multifactor authentication (MFA), if possible.
• Do use the password generator feature in your password manager to make random codes of 20 or more characters, if possible.

If a website limits password lengths to less than 15 characters, file a complaint because your personal information is at risk. The length of a password is the only protection a password provides – longer passwords are much more challenging to crack.

The best passwords are randomly generated and unique for each site. Random passwords are almost impossible to remember, so a password manager app is essential. The password manager will remember your passwords for you. However, if you must create your password without a password manager, build the password from multiple words or phrases with more than 15 characters. Use phrases you can remember like “WashingtoncrossedtheDelaware@1776” or “MycousinsweddinganniversaryisApril4th!”.