Some time after creating a Sumeria account, the customer is asked to set a password. This password, along with a phone number, represents the pair of identifiers that allow access to the account. It is the main authentication factor and, as such, a key element in account security.
Password definition
When creating an account, the customer does not define a password. More precisely, the application can only be used without a password for 30 days after registration. If no password is set after 30 days, the customer will be disconnected and required to show proof of identity in order to set his password.
It is recommended to create a dedicated (unique) password of at least 8 characters, containing at least one capital letter, one number and one special character. It is also advisable to change it regularly.
Forgotten password
Passwords are stored by Sumeria after undergoing one-way encryption. As such, Sumeria cannot help customers to find out a password that they have forgotten.
However, it is possible in this instance to access the app via the "Forgotten password" feature which is available from the log-in page.
Password, authentication measure in the application
The password may not just be entered to log in. For any sensitive action, the application provides an additional security step. By default (or if biometrics fails), the password will have to be entered to pay, for example.