Help to keep your account secure

Barnett Waddingham takes the protection of our clients' data very seriously. Here are some tips on how you can keep your BWebstream account secure.

If you suspect that someone knows your password or has gained access to your emails, computer or phone then log in as soon as you can and visit the 'Account settings' page to secure your account. If you cannot access your account then let us know and we will reset it for you.

Keep a strong password secret

We require you to choose a 'strong' password with a minimum length and a mix of upper and lower case letters and numbers.

• Don't share your password with others or with other websites. We don't know your password and will never ask you for it.
• Make your password something unique to you so that it is hard for someone with a little background knowledge of you to guess.
• If you write down your password, store it in a safe place away from your computer and phone.
• Change your password from time to time.
• Be wary of phishing attacks. When following a link from an email or from another website check the address bar of your browser and only enter your username and password if you're sure you are visiting https://logon.bwebstream.com

Use your phone to secure your account

By choosing to have verification codes sent to your phone you make it much harder for someone to break into your account. Not only does a criminal need to find out what your password is, they also need to have your phone.

You’ll be able to get verification codes through an Authenticator app – even when you don’t have a phone signal or data. You can also add backup phone numbers if you want to.

We recommend using an Authenticator app, if you don’t already – the most popular apps support our verification codes, including:

• Google Authenticator app
• Microsoft Authenticator

Looking for an alternative

If you prefer, you can set up a memorable word. We’ll ask for random characters from that word to make sure it’s you.

Keep your devices and emails secure to protect your identity

If someone gains access to your emails, computer or phone then they can find out information about you and potentially impersonate you.

• Keep your devices protected with the latest security software.
• Lock your phone with a strong passcode.
• Set up your phone so that if you lose it you can erase it remotely.

Managing trusted devices

When you log in you can choose to 'Trust this device' so that next time you log in on that particular computer you will only be asked for your username or email and password.

When you or anyone else tries to log into your account from another computer a verification code sent to your phone (or random characters from your memorable word) will still be required.

• Don't store your username, password or security answer on your computer or phone.
• Don't trust a device that is shared with others or which is not secured with a strong password or passcode.
• If you lose control of a trusted device, then you can log in and have it removed.

Turn on notifications for added reassurance

Choosing to receive an email or text message when your account is accessed from an untrusted device will reassure you that your account is not being accessed without your knowledge. You can also choose to be notified when there are repeated failed attempts to log in, or when your password or account is reset.