Hover security measures

Here at Hover, we believe in high-security standards ranging from password requirements, 2-factor authentication, new sign-in alerts, and more.

Username and passwords

Hover uses very high, industry-standard encryption for all stored passwords. Your account password can't be viewed by anyone in Hover and no one at Hover will ever ask you for your password via email or on the phone. If you forget your password, you can reset it on the sign in page.

If you are unsure of your username or password but know the email address associated with the account, you can use our Magic token sign in feature.

Sign in notifications

You can choose to enable sign in notifications on your account settings page. This will send an email notification to you each time there is a new sign in to the Hover account.


Two-step sign in

Hover offers an additional level of account security called two-step sign in which is also called two factor authentication.

When Two-step sign-in is activated on your account, you'll need to provide an additional 6-digit code in addition to your username and password to sign in to your account. You can choose to receive the code via a text message sent to your mobile phone, or you can use a special app on your smartphone that generates the unique codes as required. 

Activity feed

You can view account events in the activity feed in the Hover dashboard. This includes tracking sign-ins, new domain registrations, renewals, disabling auto-renewals, etc. When logged into the control panel. go to the Activity page.

WHOIS privacy

Hover provides WHOIS Privacy on all domains that support it at no extra cost. WHOIS Privacy replaces your contact information with ours so that when someone does a WHOIS lookup on your domain name, they aren't provided with your contact information or email address.

We believe that you shouldn't have to pay extra to keep your information private. WHOIS Privacy is enabled by default (where supported) and can be enabled or disabled in your Hover account. Make sure WHOIS Privacy is enabled on your domains.

Transfer lock

Hover supports locking of all domains that support it. Transfer lock prevents a domain from being transferred to another registrar. The only way to remove the transfer lock is from within your Hover account. We suggest that you keep the transfer lock on your domains at all times (where supported). You can see if your domain(s) have a transfer lock on under your domains page.

Hover support

Our support staff is trained to ensure that any support interactions are from the account holder or another authorized person. While that will occasionally mean a support agent will ask for additional proof of account ownership, it's our practice to always err on the side of caution when it comes to providing access to accounts, or making changes to domains in your account. Hover support does not have access to your personal account information without your consent.

PIN validation

PIN validation is sometimes used to provide additional verification by Hover Support staff when interacting with you over the phone. A PIN code is sent to the email address on the account and Support requires that you provide the PIN code to perform certain tasks related to your account via phone.

Account lock

In the event that we detect an unauthorized attempt to access your account (a number of sign-in attempts with the wrong password, for example), we'll lock your account to block further attempts. Support also has the ability to lock accounts if they detect unusual activity. Only the verified account holder can unlock a locked account.

Back to top

Was this article helpful?

Still need some help? Submit a Request.