Hover security standards

Strong security standards are amongst Hover's highest priorities. Our security protocol approach includes high-encryption passwords, sign-in notifications, two-factor authentication, and account verification for all support interactions.

Username and passwords

Hover uses very high, industry-standard encryption for all stored passwords. No one can view your account password at Hover, and we will never ask you to divulge your password.

You can reset your password via the Hover sign-in page if you forget it.
ForgotPasswordUsername.jpg

Sign-in notifications

You will be notified if this feature is enabled on your account each time you sign in to your Hover account.

You can choose to enable sign-in notifications on the Hover Settings page. This will send an email notification to you when a new sign-in occurs to your Hover account.SigninNotifications.jpg

Once logged into your Hover account, navigate to Settings and Overview.


Two-step sign in

Hover offers an additional level of account security called two-step sign-in, also called two-factor authentication.

When two-step sign-in is activated on your account, you'll need to provide an additional 6-digit code on top of your username and password to sign in to your account.

You can choose to receive the code via a text message (SMS) sent to your mobile phone, or you can use an authenticator app on your smartphone to generate the unique code as required. 

Once logged into your Hover account, navigate to Settings and Overview.
Enable2FA.jpg


Activity feed

You can view account events in the activity feed within the Hover dashboard, including tracking sign-ins, new domain registrations, renewals, disabling auto-renewals, etc. 

Once logged into your Hover account, navigate to Settings and Activity.

CPActivity.jpg

WHOIS privacy

Hover provides WHOIS privacy on all domains that support it, at no extra cost. We believe that you shouldn't have to pay extra to keep your information private. WHOIS Privacy is enabled by default and can be enabled or disabled in your Hover account. 

WHOIS privacy replaces your contact information with ours so that when someone performs a WHOIS lookup on your domain, they aren't provided with your personal contact information.

Once logged into your Hover account, navigate to the domains overview page where you will see the Whois privacy toggle.
CPWHOISprivacy.jpg


Transfer lock

Hover supports locking all domains that support it. A transfer lock prevents a domain from being transferred to another registrar.

The transfer lock can only be removed from your Hover account. We suggest keeping it enabled unless you wish to transfer your domain away from Hover. 

Once logged into your Hover account, navigate to the domains overview page, where you will see the Transfer lock toggle.
CPTransferLock.jpg

Hover support

Our support staff is trained to ensure that any support interactions are initiated by the account holder or an authorized person on the account.

While that will occasionally mean a request for additional proof of account ownership is required, it's our practice to always err on the side of caution when providing access to or making changes to your accounts or domains. 

Verifying your account

Hover support cannot view your personal information or access your account without your consent. Consent is given by verifying your account, which includes information such as your name and account email address. 

We cannot sign into or view the contents of your Hover account without your account being fully verified. When you come to Hover for help, we will determine if account verification is required to assist you. It will be necessary if we need access to your personal information, account, or mailbox settings. 

Support will send a four-digit PIN code to the primary email address on file, which you will need to provide for us to perform specific account tasks. If you have two-factor authentication enabled, you will also need to provide the six-digit code from your SMS or authenticator app.
NormalVerifyEmailPin.jpg


Account locking

If we detect an unauthorized attempt to access your account (several sign-in attempts with the wrong password, for example), we'll lock your account to block further attempts. Support also can lock accounts if they detect unusual activity.

Only the verified account holder can unlock a locked account.

Back to top

Was this article helpful? If not please submit a request here

How helpful was this article?

Thanks for your feedback!

Do you still need help? If so please submit a request here.