Hover security standards

Strong security standards are amongst Hover's highest priorities. Our security protocol approach includes high-encryption passwords, sign-in notifications, two-factor authentication, and account verification for all support interactions.

Username and passwords

Hover uses very high, industry-standard encryption for all stored passwords. No one can view your account password at Hover, and we will never ask you to divulge your password.

If you forget your password , you can reset it via the Hover sign-in page.

Sign-in notifications

Each time there is a sign-in to your Hover account, you will be notified if this feature is enabled on your account.

You can choose to enable sign-in notifications on the Hover Settings page, which will send an email notification to you when there is a new sign-in to the Hover account.

Once logged into your Hover account, navigate to Settings and Overview.

Two-step sign in

Hover offers an additional level of account security called two-step sign-in, also called two-factor authentication.

When two-step sign-in is activated on your account, you'll need to provide an additional 6-digit code on top of your username and password to sign in to your account.

You can choose to receive the code via a text message (SMS) sent to your mobile phone, or you can use an authenticator app on your smartphone to generate the unique code as required.

Once logged into your Hover account, navigate to Settings and Overview.

Activity feed

You can view account events in the activity feed within the Hover dashboard, including tracking sign-ins, new domain registrations, renewals, disabling auto-renewals, etc.

Once logged into your Hover account, navigate to Settings and Activity.

WHOIS privacy

Hover provides WHOIS privacy on all domains that support it, at no extra cost. We believe that you shouldn't have to pay extra to keep your information private. WHOIS Privacy is enabled by default and can be enabled or disabled in your Hover account.

WHOIS privacy replaces your contact information with ours so that when someone performs a WHOIS lookup on your domain, they aren't provided with your personal contact information.

Once logged into your Hover account, navigate to the domains overview page where you will see the Whois privacy toggle.

Transfer lock

Hover supports the locking of all domains that support it. Transfer lock prevents a domain from being transferred to another registrar.

The only way to remove the transfer lock is within your Hover account. We suggest that you keep the transfer lock enabled unless you wish to transfer your domain away from Hover.

Once logged into your Hover account, navigate to the domains overview page where you will see the Transfer lock toggle.

Hover support

Our support staff is trained to ensure that any support interactions are initiated by the account holder or an authorized person on the account.

While that will occasionally mean a request for additional proof of account ownership is required, it's our practice to always err on the side of caution when providing access to or making changes to your accounts or domains.

Verifying your account

Hover support cannot view your personal information or access your account without your consent. Consent is given by verifying your account, which includes information such as your name and account email address.

We cannot sign into or view the contents of your Hover account without your account being fully verified. When you come to Hover for help, we will determine if account verification is required to assist you. It will be necessary if we need access to your personal information, account, or mailbox settings.

Support will send a four-digit PIN code to the primary email address on file, which you will need to provide for us to perform specific tasks related to your account. If you have two-factor authentication enabled, you will also be required to provide the six-digit code from your SMS or authenticator app.

Account locking

If we detect an unauthorized attempt to access your account (several sign-in attempts with the wrong password, for example), we'll lock your account to block further attempts. Support also can lock accounts if they detect unusual activity.

Only the verified account holder can unlock a locked account.