Need Help Resetting Your Password?
IMPORTANT – If you are accessing the new Portal for the first time, you must reset your password using the Reset/Forgot Password link.
  • Q What is considered an acceptable password?
  • A Passwords must be a minimum of 8 characters and a maximum of 128. Passwords must contain at least 1 number and 1 special character (e.g. @, #, $, %, etc.) excluding spaces. Please refer to the Password Best Practices section at the end of this document for tips on how to create strong passwords.
  • Q Can my assistant have access to the Portal?
  • A Yes. Please send an email to investorrelations@sam.com authorizing such a request. Be sure to include the assistant’s first and last name, title, company name, and email address along with your contact information.
  • Q What if I forgot my password?
  • A Click on the Reset/Forgot Password link and complete the Reset Password steps. Once the password is reset, you should be able to access the Portal.
  • Q How do I reset my password?
  • A Click on the Reset/Forgot Password link and complete the Reset Password steps. You will not be able to use a password you used previously. Once the password is reset, you should be able to access the Portal.
  • Q The Portal says I’m locked out. What do I do?
  • A Click on the Reset/Forgot Password link and complete the Reset Password steps. Once the password is reset, you should be able to access the Portal.

If you need assistance with resetting your password, please contact Investor Relations at (866) 418-5144 or portal@sam.com. They will respond within one business day.

Password Best Practices

One of the most effective methods to safeguard data is your password. A strong password can be an effective deterrent against data theft.

Here are some password best practices to help you safeguard sensitive information:

Create Strong Passwords:
  • Do not use easily guessed passwords such as your favorite sports team, child’s name, your own name, “password” or “user,” etc.
  • Create unique passwords that that use a combination of words, numbers, symbols, and both upper- and lower-case letters.
  • Consider using a Passphrase: Increasing the number of characters in a password dramatically improves security. Every additional character increases the number of possible combinations exponentially, making attacks on longer passwords far harder, and ultimately impractical, for hackers to crack. “AllEndingsAreAlsoBeginnings” is a far stronger password than “Zq!5$7éf”, even though the phrase only contains letters. It is harder to guess than “Password1”, yet remains easy to remember for the user. It may take a little longer to type than a standard eight-character password, but is probably easier for most people to type accurately than “Zq!5$7éf.”
  • Do not use your email (jsmith@acme.com) or the username portion of your email (e.g., jsmith) as your password.
  • Do not choose passwords based upon details that may not be as confidential as you’d expect, such as your birth date, your social security or phone number, or names of family members.
  • Do not use words that can be found in the dictionary. Password-cracking tools freely available online often come with dictionary lists that will try thousands of common names and passwords. If you must use dictionary words, try adding a number to them, as well as punctuation at the beginning or end of the word (or both).
  • Avoid using simple adjacent keyboard combinations: For example, “qwerty” and “asdzxc” and “123456” are passwords that should be avoided and are easy to crack.
Use Thoughtful Password Practices:
  • Do not share your password.
  • Do not provide your password via an email that looks like it is from a system administrator, bank, etc. These are common types of “phishing” scams where malicious users try to trick you and steal your credentials.
  • Avoid websites or services that send your password instead of making you create a new one when you “Forgot your password.” This means the service does not hash its passwords and instead uses less secure methods like plain-text or encryption.
  • Avoid using the same password at multiple websites. This is especially true for accounts that store your sensitive financial, health, and other personal information. Why would you treat your Netflix security the same as your bank security?
  • If you suspect your data has been compromised, speak up. It’s critical to take action as soon as possible following a data breach.