Your username and password are your access data to your account. If somebody gets hold of or guesses them, he may log into your account and take over your club. Since your username is visible to anybody in the game, you should be using a secure password. When you have chosen a secure password and keep it to yourself, your account is safe, and nobody can easily gain control over your club.

We would like to give you a few tips about secure passwords and what you should keep in mind when choosing one. The easiest way to get hold of a password is guessing it. Unfortunately, it is quite common for many users to choose a password identical to their usernames or some obvious one related to the account. For example, when you username is “Arsenal”, it is too obvious to choose “Gunners” as your password, since it's one of the first things an intruder would try.
Generally, it's not advisable to choose a word that's found in some dictionary or a commonly used term. Pick a random string - then your password cannot be guessed by ordinary means.

Besides password guessing, a potential hacker could use brute force, checking for varied string combinations. Against those attacks, you can protect yourself best by choosing a long password (min. 8 characters), ideally containing special characters, numbers and a mix of upper and lower case letters. These kinds of passwords are nearly impossible to find out by brute force-attacks. At the same time, our systems are configured to counteract such attacks.

The following tips should help you choosing your secure password:

• at least 8 characters
• not easy to guess (trivial and deduced off club/personal data)
• no word found in a dictionary, no common term
• best use a random string
• String should consist of at least two of the following criteria (the more the better):
  • lower case characters ( e.g. a, b, c, …)
  • upper case characters ( e.g. A, B, C, …)
  • numbers ( e.g. 1, 2, 3, …)
  • special characters ( e.g. !, ”, §, $, %, &, /, (, ), =, …)

Under Home → Personal Data you can have yourself have suggested sufficiently secure passwords, which are easy to remember.

Nobody from the official team - nor northworks neither goalunited - will ever ask you for your password. Your password is secret and should not get in the hands of anybody but yourself. Again and again, there are attempts simply to ask you for your passwords (sometimes in combination with a proposed benefit). Never reply on these Requests, instead asperse the message to us!

Your passwords will be encrypted before they are saved in the database, and cannot be decrypted again. Your login is checked against the encrypted version only, noone but you will know the decrypted value of your password.