Some time after creating a Lydia account, the customer is asked to set a password. This password, along with a phone number, represents the pair of identifiers that allow access to the account. It is the main authentication factor and, as such, a key element in account security.
Password definition
When creating their account, customers do not define a password. The application can only be used without a password for 30 days after registration. If no password is set after 30 days, the customer will be disconnected and will have to follow the unlocking procedure to set a password.
If they are logged in to their account, customers can update their password at any time from the "Security" screen.
It is recommended to create a dedicated (unique) password of at least 8 characters, containing at least one capital letter, one number and one special character. It is also advisable to change it regularly.
Forgotten password
Passwords are stored by Lydia after undergoing one-way encryption. As such, Lydia cannot help customers to find out a password that they have forgotten.
However, in these cases it is possible to access the application without the password, thanks to the unlocking procedure available from the login screen.
Password, authentication measure in the application
The password may not just be entered to log in. For any sensitive action, the application provides an additional security step. By default, (or if biometrics fails), the password will have to be entered to pay, for example.