Back to Top Skip to main content
Items: 0
Subtotal £0.00
Estimated delivery
£0.00
VAT
£0.00
Total
£0.00
Volume prices

Westcoast Website Password and Account Policies

This year, Westcoast is stepping up its cyber security. This means some changes to the login processes on our website as we update our Password and Account Policies.

 

Account Policy:

To maintain the integrity of our user account database and act in accordance with our data retention policy, we will also be implementing a new account policy which contains the following:

If you have not logged in for 12 months, your user account will be disabled. 

If you have not placed an order within 12 months, your account will be disabled. 

User and order data will be obscured after 72 months from the date when the user account was disabled. In this case, there will be no way to recover the data beyond this point

Users are not supposed to use shared logins and passwords; each user must have a unique login username (email address) and password. This will make the adoption of multi-factor authentication smoother, allowing each user to retrieve their authentication code via their own device, and ensuring nobody is unable to access their account. For more information on setting up a user login, please click here

Each company should have a primary and secondary admin to manage their account. For more information on setting up a secondary admin login, please click here.

If it appears your account is no longer accessible, please speak with:

1. Your company's primary or secondary admin

or

2. Your account manager or our Risk team at risk@westcoast.co.uk for more information on how to reactivate your account with Westcoast. 

 

 

Password Policy:

To ensure the integrity of our reseller accounts, we are implementing several key policies which will impact creation and maintenance of user passwords. Please see them below, and a summary of how each scenario could affect you:

For Administrators: your password must contain a minimum of 15 characters, which includes 1 lower case character, 1 upper case character, 1 numeric character, and 1 special character. Passwords which do not meet this requirement will be rejected.

For all other account types: your password must contain a minimum of 10 characters, which includes 1 lower case character, 1 upper case character, 1 numeric character, and 1 special character. Passwords which do not meet this requirement will be rejected.

Your password will expire 45 days after its reset date. If you are being prompted to reset your password, this could be because your password has expired. For information on resetting this, please find our guide here.

You can't reuse your recent password if you used it within the last 365 days. This means you cannot alternate between the same passwords and will be required to create unique ones.

Rejection of a number of simple, easy to guess words and phrases within a password to avoid password spray attacks as recommended by NCSC. If you try setting your password with any of the words on our password blacklist, the password will not be set and you will need to try again. Please refer to the password requirements so you can easily create a secure password. For more information about password spray attacks and blacklisted passwords, please click here.

Your account will be locked after 5 unsuccessful password attempts. Users will be able to try again after 30 minutes have elapsed. We want to get all our resellers ready for a safer, more secure Westcoast website experience, which will culminate in multi-factor authentication in the coming months. For more information about MFA, please click here

Please speak to your account manager if you have any questions regarding the password policy.

We are making security updates to our website over the coming weeks. This will include a multifactor authentication during log in.