Account Security Best Practices

Your Landager account holds sensitive financial data — rent records, tenant contact information, lease documents, and expense details. Protecting this data is critical.

This guide covers the security features built into Landager and the best practices you should follow as an account owner.

How Landager Protects Your Account

Secure Password Storage

Landager never stores your password in plaintext. All passwords are hashed using bcrypt before storage, which means even in the unlikely event of a data breach, your actual password cannot be recovered from the stored hash.

Google OAuth Option

If you prefer not to manage another password, sign in with Google OAuth for a secure, one-click login experience. This delegates authentication to Google's own security infrastructure.

Remembered Sign-In Method

Landager remembers the last sign-in method you used (email/password or Google) and highlights it on the login page, making it easy to sign in the same way each time.

Password Reset: The OTP Flow

If you forget your password, Landager uses a secure reset process:

1. Click "Forgot Password" on the login page.
2. Enter your registered email address.
3. You'll receive a time-limited OTP (one-time password) via email.
4. Enter the OTP to verify your identity.
5. Set a new password.

This flow ensures that only someone with access to your registered email can reset your credentials.

Changing Your Password

If you're already logged in and want to update your password:

1. Navigate to Settings.
2. Find the password change option.
3. Enter your new password and save.

Note: This option is available for accounts that use email and password authentication. Google OAuth users manage their password through Google's account settings.

Security Best Practices

Do's

• Use a strong password: Combine at least 12 characters with letters, numbers, and symbols.
• Use unique passwords: Don't reuse your Landager password on other websites.
• Keep your email secure: Your email is the key to password resets — if it's compromised, your Landager account could be at risk.
• Log out when using shared devices: Always sign out after using Landager on a computer that isn't yours.

Don'ts

[!CAUTION] Never share your Landager password with anyone — not employees, not contractors, not family members.

• Don't share login credentials: If someone else needs access to your data, consider exporting reports instead.
• Don't store sensitive data in notes fields: While Landager protects your account, avoid putting bank account numbers, Social Security numbers, or other highly sensitive information in free-text note fields.
• Don't ignore suspicious activity: If you notice unfamiliar actions in your Activity Log, change your password immediately and contact support.

Getting Help

If you believe your account has been compromised or you're experiencing login issues:

1. Navigate to the Support Tickets section.
2. Create a new ticket with High or Critical priority.
3. Describe the issue in detail, including any error messages.
4. The Landager team will respond as quickly as possible.

For more on navigating the platform, see our guide on Navigating the Dashboard.