Do you lock your door when you leave your home? You should also protect your devices and online access against access by strangers the same way.
The most important points to remember:
- Protect your computer and mobile devices (smartphones, tablets, etc.) against unauthorised access, and lock your screen if you are not actively using your device.
- Use secure passwords (at least 12 characters long, consisting of numbers, both upper and lower case letters and also special characters).
- Don’t always use the same password everywhere, but create different passwords for different options.
- If possible, also activate so-called two-factor authentification.
Securing devices against unauthorised access
Protect all your devices via access protection. With notebooks, tablets and smartphones in particular, the risk of loss or theft is considerably greater than with your home PC.
Especially on your mobile devices, you should therefore ensure that the automatic screen lock via code, password, fingerprint or face recognition is activated.
In addition, you should encrypt your data on any mobile device. This particularly applies to auxiliary storage media, such as external hard drives or USB sticks. This makes it impossible for unauthorised persons to access your data and apps via external systems.
Access lock up to iPhone 9: Under Settings/Touch ID & Code, you can protect your device via a number code or password and can also deposit your fingerprints.
Access lock from iPhone 10 onwards: Under Settings/Face ID & Code, you can configure your device for face recognition.
With iPhones and iPads, data are automatically encrypted.
Secure passwords
Passwords are still the most common and widely used keys in an electronic environment, protecting access to sensitive and private data. Just observing a few simple rules on how to handle passwords provides you with much improved protection.
6 rules for a secure password...
- Use at least 12 characters
- Use numbers, upper- and lowercase letters plus special characters
- Don’t use any key sequences, such as «asdfgh» or «45678»
- Don’t use any word in a known language – i.e. your password should not make any sense and should not be found in any dictionary
- Use a different password for all your applications
- Please do not save your password anywhere unless it is encrypted
It is not really that difficult to create a secure password! Below we have explained how to create and subsequently also remember a secure password in a simple manner:
- Take a sentence which is easy for you to remember, and create your password from the respective first letters and numbers:
«My daughter Tamara Meier was born on January 19!»
- This results in a password consisting of random characters which is easily remembered:
«MdTMwboJ19!»
Password manager
A password manager serves to save all your passwords in encrypted form - so you only ever have to remember a single password.
We recommend the following password managers for use with Windows, some of which are free:
Further information and a detailed comparison of common password managers can be found in the “Fact Sheet Password Manager“ of the Zurich canton data protection officer.
Two-factor authentification
In addition to a secure password, so-called two-factor authentification provides additional security. In the process, a second, independent security component is requested in addition to the first one (generally a password). This might be a code sent to your mobile phone or generated directly on your device.
Nowadays, it is not just financial institutions, but also many online service providers (such as Google, Facebook) who offer two-factor authentification. You should avail yourself of this increased level of security. A description of all the different methods used by financial institutions can be found here.
Was my online access hacked?
Check whether your password for any of your online accounts has been hacked:
Here you can find out whether your log-in details for any online accounts have been compromised or were published due to a data breach. This page uses the familiar https://haveibeenpwned.com platform to check its database and then prepares your results in German, French, Italian or English for you. To do so, enter your respective user name or e-mail address, but never the password to be checked!
