We puts the highest priority on our customers privacy and security.
Here are how that policy is implemented.
1.Password generation rules
A password should be at least 12 characters.
Also we strongly recommend the followings when creating passowords:
・It should contain the mix of lower case letter, upper case letter, numeric letter, and symbols.
・Please avoid using birth dates or any words that could be easily predicted.
・Please avoid using the same password for all important online services.
How to change (reset) your password
2.Account lock
Your account is locked if login attempts failed more than 5 times with incorrect passwords.
To unlock your account, please follow the password reset procedure.
3.2FA
2FA can be enabled via settings. We support usual SHA1 as well as SHA256/512 for more robustness. Please be noted that we might only enable the upcoming new features for those who enabled 2FA.
How to set up two-factor authentication.
4.How we store your password
Your password is stored after being salted with sufficient rounds and hashed, so that even cryptact doesn't know your password.
At the same time, please consider using an email address which you don't use any other place, and please don't reuse your password with the other places.
Additionally, as a measure to further enhance security, you can create a new email address consisting of a random string (not used on other sites) using a free email service and register with that email address. Also, set a new password that you have not used on other sites. This will improve security even further. Please note that we may contact you via the registered email address in the future, so it would be appreciated if you could regularly check the email address used during registration.