How Can I Manage My Passwords Safely?

Keeping track of passwords can be challenging, especially since we recommend using strong and separate passwords for each account. Here are some friendly password management tips to help you stay secure without feeling overwhelmed.

Create Strong Passwords That Are Easy to Remember but Hard to Guess

A great method is to use a passphrase – a short sentence or a few random words together – instead of a single word.

Good examples:

• BeachGardenSunset! – long, contains a mix of letters (upper and lower case), a symbol, and it’s something you can picture
• Coffee&Morning42 – combines words with numbers and symbols
• BlueMountain$Sky – easy for you to remember, hard for others to guess

Password best practices:

• Aim for at least 12 characters or more
• Use a mix of uppercase letters, lowercase letters, numbers, and symbols
• Avoid using personal info (like your birthdate, address, or pet’s name)
• Don’t use common passwords like “password123” – those are the first things hackers will try

Don’t Reuse Passwords Across Different Accounts

It’s tempting to use one memorable password everywhere, but that’s dangerous.

Why this matters:

• If that one password gets stolen in a breach, criminals could access all your accounts
• Using a unique password for each important account (bank, email, shopping sites, etc.) means if one gets compromised, the others remain safe
• It’s a bit more effort upfront, but it seriously reduces your risk

Which accounts need unique passwords:

• Bank and credit card accounts (highest priority)
• Email accounts
• Shopping sites (especially ones with saved payment info)
• Social media accounts
• Any account with personal or financial information

Consider Using a Password Manager

Password manager programs (or apps) can store all your passwords securely in one place.

How they work:

• You only have to remember one master password to unlock the manager
• The manager can generate and remember very complex passwords for you
• It can automatically fill in passwords when you visit websites
• Your passwords are encrypted and kept secure

Benefits:

• Reduces the stress of recalling multiple logins
• Prevents password reuse
• Can generate extremely strong passwords you’d never remember on your own
• Many sync across your devices (phone, tablet, computer)

Popular password managers:

• 1Password
• LastPass
• Dashlane
• Bitwarden

Many of these offer user-friendly features and can be a great solution if you’re comfortable with technology. Most have tutorials and customer support to help you get started.

Be Cautious with Written Passwords

Writing passwords in a notebook is not as secure as a password manager, but we understand some folks prefer it. If you do write them down, follow these guidelines:

Do’s:

• Keep the list in a locked drawer or another secure location
• Treat it like a valuable document (similar to how you’d store important papers)
• Consider writing hints rather than full passwords if possible
• Make sure only people you fully trust have access

Don’ts:

• Don’t keep the list near your computer or in an obvious place
• Don’t leave it lying around where visitors could see it
• Don’t carry it in your wallet or purse
• Never share your password list with anyone unless you completely trust them

Update Your Passwords Periodically

It’s a good practice to change your passwords now and then, especially for critical accounts.

When to update passwords:

• Every 6-12 months for important accounts (bank, email)
• Immediately if you suspect an account might be compromised
• Immediately if you hear about a data breach at a company where you have an account
• Anytime you get a notification about suspicious login attempts

Important:

• When you update one password, don’t reuse an old password for a different account
• Make a fresh new one each time
• If changing multiple passwords, make sure each one is unique

Password Security Checklist

Use this checklist to ensure you’re following best practices:

• I use passwords that are at least 12 characters long
• My passwords include uppercase, lowercase, numbers, and symbols
• I use different passwords for my bank, email, and other important accounts
• I don’t use personal information (birthdays, pet names) in my passwords
• I keep my written passwords (if any) in a secure location
• I have two-factor authentication enabled on my most important accounts
• I update my passwords periodically or when there’s a security concern

What If I Forget a Password?

If you forget your password, you can reset it using the self-service option on the login page.

For detailed instructions on resetting your password, see our guide on Resetting a Forgotten Password.

The Bottom Line

Password management doesn’t have to be complicated. The key principles are:

1. Strong passwords (long and complex)
2. Unique passwords (different for each account)
3. Secure storage (password manager or locked location)
4. Regular updates (change them periodically)

Taking these steps will greatly improve your account security and give you peace of mind.

Need Help?

If you’re having trouble with your Bank of Marin password or have security concerns, contact us at (866) 626-6004.