> ## Documentation Index
> Fetch the complete documentation index at: https://docs.stashlify.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Login Security

> Industry-standard security practices protecting your account

Stashlify uses industry-standard security practices to protect your account and business data.

## Authentication

* **JWT (JSON Web Token) encrypted sessions.** Your login session is cryptographically signed and cannot be tampered with.
* Sessions expire after a period of inactivity, requiring you to log in again.
* All communication between your browser and Stashlify servers is encrypted via HTTPS/TLS.
* Password requirements enforce minimum complexity standards.

## Best practices

* Use a strong, unique password that you do not reuse across other services.
* Log out when using shared or public computers.
* Keep your contact information up to date for account recovery.
* Review the activity log periodically for any unrecognized login events.
