Many online web sites enable you to request a copy of your password to be sent to you. We don't.
When you enter your password on the Picasso HR web site it is encoded using a one way function. We keep a copy of your encoded password in our database and compare that entry with an encoded version of the password you enter. If they match, you get logged on. As we use a one way function to do the encoding, we cannot decode it, and therefore we cannot send you a copy of your password..
People have very many passwords to remember these days and tend to use the same one for many systems. That means the password you use on our site may potentially also give access to other sites with your email address. How could some one get the password from the web site you may ask? Well, there are a number of possibilities including a hacker into our web site for example - even banks with substantial IT resources have had this happen.
So, for your security, we keep no record of your plain text password, and we have no way of obtaining the plain text password. So, if you forget it, it is lost forever and we need to get another password to you. Of course, when you receive this password you can logon and change it to something you will remember.
Password Tips
There are a number of do's and don'ts with passwords in general, for example:
Your password should be a minimum of eight characters long and not easily guessable.
Try to include some form of punctuation or digit.
Use mixed case passwords if possible.
Choose a phrase or a combination of words that makes the password easier to remember.
Do not use a word that can be found in any dictionary (including foreign language dictionaries).
Do not use a keyboard pattern such as qwertyui.
Do not repeat any character more than once in a row like zzzzzzzz.
Do not use all punctuation, all digits, or all alphabetic.
Do not use things that can be easily determined such as: phone numbers, car registrations, friends' or relatives' names, your name or employment details, or any date.
Never use your account name as its password.
Use different passwords for each machine you have access to.
Change the password regularly and do not reuse passwords.
Do not prefix or suffix a word with a digit or punctuation mark.
Do not reverse words.
Do not replace letters with similar looking numbers. For instance, all of the letters i should not be blindly replaced by the digit
