First test tip20% discount
BackpackLink

Password Policy

Last updated: July 2026

Your BackpackLink account holds your eSIMs, order history, and receipts, so keeping it secure matters. This policy explains the password rules we enforce, how we store your password, and how you can protect your account.

1. Password requirements

When you create or change a password, it must:

  • be at least 6 characters long (we recommend 12 or more);
  • be unique to BackpackLink — don’t reuse a password from another site;
  • avoid obvious choices such as your email, name, or “password123”.

For a stronger password, mix upper- and lower-case letters, numbers, and symbols, or use a passphrase of several random words.

2. How we store your password

We never store your password in plain text. Passwords are hashed with the industry-standard bcrypt algorithm (with a per-password salt) before being saved, so even we cannot read your original password. When you sign in, we compare hashes — the raw password is never kept.

3. Your responsibilities

  • Keep your password confidential and don’t share your account.
  • Use a different password here than on your email or bank accounts.
  • Sign out on shared or public devices.
  • Tell us right away if you think someone else has accessed your account.

4. Changing your password

You can change your password at any time in the BackpackLink app, under Account → Security → Change password. You’ll need your current password to set a new one.

5. If you’ve forgotten your password

Self-service password reset by email isn’t available yet. Please contact support, and we’ll verify your identity and help you regain access to your account. We will never ask you for your password by email or in chat.

6. Extra account security tips

  • Prefer a reputable password manager to generate and store unique passwords.
  • Watch out for phishing — always check you’re on the real BackpackLink site before entering credentials.
  • Keep your device and email account secure, since they can be used to verify your identity.

7. Reporting a security concern

If you notice suspicious activity or a possible vulnerability, please contact us through the support page so we can act quickly. See also our Privacy Policy and Terms & Conditions.