Your Apple ID is the account you use to access Apple services like the App Store, Apple Music, iCloud, iMessage, FaceTime, and more. It includes the email address and password you use to sign in as well as all the contact, payment, and security details you'll use across Apple services. Apple takes the privacy of your personal information very seriously and employs industry-standard practices to safeguard your Apple ID.
Here are some of the best practices you can follow to maximize the security of your account.
Use a strong password for your Apple ID
Apple policy requires you use strong passwords with your Apple ID. Your password must have 8 or more characters and include upper and lowercase letters, and at least one number. You can also add extra characters and punctuation marks to make your password even stronger. Apple also uses other password rules to make sure your password isn't easy to guess.
Make the answers to your security questions hard to guess
Apple uses security questions to provide you with a secondary method to identify yourself online or when contacting Apple Support. Security questions are designed to be memorable to you but hard for anyone else to guess. When used in conjunction with other identifying information, they help Apple verify that you are the person who is requesting access to your account. If you haven't selected your security questions, visit your Apple ID account page to set them up.
Protect your account with two-factor authentication
Apple offers an improved security method called two-factor authentication designed to ensure all the photos, documents, and other important data you store with Apple can be accessed only by you, and only with your devices. When you enter your Apple ID and password for the first time on a new device, we’ll ask you to verify your identity with a six-digit verification code. This code is displayed automatically on your other devices, or sent to a phone number you trust. Just enter the code to sign in and access your account on the new device. Never share your password or verification code with anyone else.
Two-factor authentication is built right in to iOS 9 and OS X El Capitan. It's currently available to users who meet specific account and system requirements.
Protect your account with two-step verification
Apple also offers an optional security enhancement for your Apple ID called two-step verification. Two-step verification requires you to verify your identity using one of your devices before you can make changes to your Apple ID account information, sign in to iCloud, or make an iTunes, App, or iBooks Store purchase from a new device.
Never share your password, Recovery Key, or verification code with anyone else.
Check for encryption and SSL
All web pages where you can view or change your Apple ID utilize Secure Sockets Layer (SSL) to protect your privacy. In Safari, look for in your browser when accessing your account at your Apple ID account page to know your session is fully encrypted and secure.
Employee privacy and security policies
In addition to strong passwords, encryption, and other technology, Apple has strict policies and procedures in place to prevent unauthorized access to your account. Without proof of your identity via security questions and other carefully selected criteria, Apple Support can't help you reset a password or perform any other actions on your account. These policies are audited and reviewed on a regular basis.
Other tips for keeping your account secure
Good online security requires a combination of practices by companies using Internet services and informed behavior by users. Below are some tips to follow to maximize your security when using your Apple ID and other online accounts.
- Always use a strong password.
- Never use your Apple ID password with other online accounts.
- Change your password regularly and avoid reusing old passwords.
- Choose security questions and answers that can't be easily guessed. Your answers can even be nonsense as long as you can remember them. For example, Question: What is your favorite color? Answer: Mozart.
- Set up two-factor authentication for your Apple ID to add an extra layer of security to your account and eliminate the need for security questions.
- Avoid phishing scams. Don’t click on links in suspicious email or text messages and never provide personal information on any website you aren’t certain is legitimate. Learn how to identify phishing attempts.
- Never provide your password, security questions, verification codes, recovery key, or any other account security details to anyone else. Apple will never ask you for this information.
- Don’t share your Apple ID with other people, even family members.
- When using a public computer, always sign out when your session is complete to prevent other people from accessing your account.
- If you abandon an email address or phone number associated with your Apple ID, be sure to update your Apple ID with current information as soon as possible.
If Apple Support needs to verify your identity, we might ask you to generate a temporary Support Pin. We'll only ask for this information over the phone after you contact Apple Support for help.
Learn what to do if you think your account information has been compromised. If you need more help, contact Apple Support.
FaceTime isn't available in all countries or regions.