Skip to main content

Password Update For Online Services

26 January 2026

We’re improving password security across a number of different online services – Online Catalogue and Ordering system, Home Delivery Service (HDS), eDC (online application only) and Billing.

Why this matters

Our current systems can have varied password rules across different applications – this can potentially cause confusion and security risks.

We are aligning with modern security standards to protect our users and our organisation, and this approach is approved by the National Cyber Security Centre (NCSC) as being both ‘long enough and strong enough.’

This will result in passwords that are easier to remember, stronger, and more secure and consistent across our systems.

You will be provided with information on what the new password complexity rules are when your current password expires, or when you manually change your password (if either of these happen after the ‘go live’ date).

What’s not changing

The process for logging in stays the same. If you use multiple systems, you can use the same password across them.

When this will happen for you

The new password rule is scheduled to come into effect from the end of January 2026. However, you won’t need to change your password immediately, only when your current password expires.

System synchronisation

Previously, your logins may have had different dates of expiry and different types of complexity requirements. These differences are being phased out.

Person studying a laptop with a coffee on their desk

Tips for choosing strong passwords

  • Avoid words relating to your job, family or hobbies.
  • Choose unrelated words with no obvious pattern.
  • Numbers are not required, but if you use them, place them randomly.

More information or support

Please contact us if you have any concerns or if you need support.

Client Services Helpdesk

cshelpdesk@supplychain.nhs.uk

0203 341 6023

Previous Update: 2 September 2024

Changes to Your Online Catalogue and Ordering Login to Further Safeguard Your Account

We are upgrading the security on our Online Catalogue and Ordering system to align with best practice and to further safeguard your account. Changes will include:

Password complexity
Your Online Catalogue and Ordering password will now have to be a minimum of 12 characters, this has increased from 7. Your password will require the following:

  • At least two special characters or non-alphanumeric characters, such as: #£$&*?”%@
  • Two numbers
  • At least two upper and two lower-case characters.

Password lockout
Your account will be temporarily locked for 10 minutes if more than 10 incorrect login attempts are made. The lock will automatically expire or can be unlocked via the self-service portal.

Password change duration
Passwords are required to be changed every 90 days, rather than the current monthly cycle.

Password history
You will not be able to reuse any of your last 24 passwords.

Password reset / forgotten process
A random, 12 digit, single-use password will be sent to the email address associated with your account, once authenticated you must change your password immediately to proceed. The single-use password cannot be reused.

These changes will not immediately affect your account, but will come into force the next time your password expires, or when a password reset is requested.

Quick Links

Governance and Legal

Connect With Us

© Supply Chain Coordination Limited, a company registered in England and Wales.
Registered number: 10881715. Registered office: Wellington House, 133-155 Waterloo Road, London SE1 8UG.