Help Center

Password Policy


This page provides information about SmartHR's password policy.

If you have any questions about the password policy, please refer to the help page below.

About SmartHR's password policy

The SmartHR password policy balances user friendliness with the standards of the NIST (US government standards) and the National Center of Incident Readiness and Strategy for Cybersecurity (NISC).

Password length

10 characters

Character type

No restrictions

Banned passwords

Banned password (blacklist) settings use the API of an external database that can check whether the password has been leaked in the past.

Expiration date

Periodic changes should not be requested

Account lockout

You will be locked out of your account after 10 incorrect password attempts.

After 5 incorrect attempts, a “number of attempts remaining” message will be displayed.

An account can be unlocked by personnel in charge or the employee can reset their password.

For more information, refer to the help page below.