The UK’s National Cyber Security Centre (NCSC), part of the GCHQ, has issued a major warning: it’s time to retire the password. For small hotel owners and B&B hosts, this is a gamechanger for securing your booking system and guest data.

You can set up passkeys on your freetobook account (in Home > Security > Passkeys tab). It’s easier to log in with a passkey.

What are passkeys?

Instead of a typed password, a passkey is a “digital stamp” stored securely on your phone or computer. To log in, you simply use your device’s biometrics, like facial recognition or a fingerprint, or your phone’s PIN.

Why it’s better for small accommodation businesses:

• Unbeatable security: Most cyberattacks start with stolen password details. Passkeys cannot be “phished” or stolen from a server.
• Simple and fast: No more forgotten passwords or ‘Reset Password’ emails during a busy check-in. Logging in becomes as fast as unlocking your smartphone.
• No more SMS codes: Unlike traditional Two-Factor Authentication (2FA), you don’t have to wait for a text message code to arrive. Passkeys handle the security in the background, saving you time and frustration.
• Eliminates human error: As a small business owner, you juggle dozens of logins. Passkeys remove the “onus for security” from you and your staff, preventing the common mistake of reusing the same password across multiple sites.

The bottom line:

The NCSC confirms that passkeys are now the most secure and user-friendly way to protect digital services. Major platforms like Google, Stripe, Apple and the NHS have already made the switch.

GCHQ say that most phishing attempts begin with criminals stealing or compromising a person’s login details.

For small hotels and B&Bs, adopting passkeys for your booking system is the simplest way to protect your business from modern hackers while making your daily admin significantly easier.