Keeping your account
and data secure
A strong password is essential when it comes to your online security, and you need a unique one for each of your social media, bank accounts and work accounts.
Frequently asked questions
How can I change my Compass password?
School Controlled Accounts (Usually Staff & Students)
If you are a Staff Member or Student, there is a chance that your account is controlled via the IT team at your school (for Single Sign On or Active Directory configurations).
If so, report your concern to the IT team at your school immediately or follow the password reset procedures that your school has outlined.
Local Accounts (Usually Parent Accounts)
For any accounts that are controlled locally by Compass, including Parent accounts, follow the below steps.
Login to Compass, and under the Cog icon, click "Change My Password".
Enter a new password that meets the following criteria;
Not contain your username
Not be a password recently used by this account
Be at least eight (8) characters in length
Contain at least one (1) UPPERCASE letter
Contain at least one (1) lowercase letter
Contain at least one (1) number
3. Click "Save".
Believe your account may be compromised?
The first thing you should do is change your password.
Please see the "How can I change my Compass password?" section above.
After changing your password, the next step is to review all your active sessions.
You can review all your active sessions in the "Login and Security" page located under the "Cog" menu in the top navigation bar.
If any of the entries seem suspicious, you can drop the session by pressing the red 'x' on the right of the entry. This will log out that particular session.
Email Login Alerts
Each time you log in to Compass, you will receive an email alert to notify you of that login. If you have not logged in on the date and time in the email, immediately take steps to secure your account.
See sections "How do I change my password" and "Believe your account has been compromised".
How to check if you're logging in to a genuine Compass page
When signing into Compass from a web browser, always look to see that the domain is structued as follows:
https://yourschool.compass.education/pages.aspx
Make sure the start of the URL is https not http
yourschool - this should be the name or abreviation of your school, it may be followed with a state or country identifier (such as -NSW, -UK or -IE).
.compass.education/ - all compass portals have this domain name . If you see a .com, .org, .net in the url - this is likely not a legitimate Compass domain.
/pages.aspx - this part of the URL will vary depending on the part of compass you are viewing
If you are unsure, please send an email of the entire URL to our team at support@compass.education and we will let you know.
When browsing pages in Compass we use SSL/TLS - which means that a domain should have https in the URL and should include a padlock to indicate the website is secure.
If you believe you have logged into a page that is not a genuine Compass URL, we recommmend you change your password immediately and email us (support@compass.education).
How do you know if an email from Compass is legitimate?
Automated emails from the Compass platform will come from the compass@compass.email address.
Any email sent from a Compass employee will be from NAME@compass.education.
If you have received an email that you deem to be suspicious, please forward this to support@compass.education immediately for investigation.
How do I report a security concern?
Our security and legal teams are available around the clock.
If you have an urgent security concern please email legal@compass.education
If you would prefer to speak to someone, call our support team:
Australia: + 61 3 9005 5217 (7am - 2am Monday - Friday)
UK: +44 114 697 7000 (8am - 5.30pm Monday - Friday)
Ireland: +353 1 699 4305 (8am - 5.30pm Monday - Friday)
You can also use the LiveChat feature below.
What is Compass' password policy?
To ensure the security of your Compass account, your password must meet the following criteria:
Not contain your username
Not be a password recently used by this account
Be at least eight (8) characters in length
Contain at least one (1) UPPERCASE letter
Contain at least one (1) lowercase letter
Contain at least one (1) number