Each person who uses a home computer should have their own standard (non‑admin) account protected by a strong password or passphrase, while a separate administrator account is reserved only for system changes.

Core best practice

  • Create one personal account per person (no shared logins) so files, browser data, and settings stay private and easier to secure.
  • Use a standard account for everyday work, browsing, gaming, and email; only use an administrator account when you need to install software or change system‑wide settings.
  • Protect every account with a unique, strong password or passphrase and enable multi‑factor authentication wherever the system or linked online services support it.

Admin vs regular accounts

  • Keep at least one dedicated administrator account that is not used as a daily driver and has a strong, unique password.
  • For all regular users (including the technical person in the household), use limited/standard accounts to reduce the impact of malware or accidental changes.
  • When prompted for admin credentials (for installs or settings), enter them only when you initiated the action and you trust the software source.

Handling family, kids, and guests

  • Give each family member a separate standard account so everyone can customize settings and store documents without exposing others’ data.
  • For children, use child/managed accounts with parental controls (screen time, app restrictions, content filters) where the operating system provides them.
  • For visitors, use a guest or temporary account with minimal permissions and remove or disable it when they no longer need access.

Password and security hygiene

  • Use long passphrases (a few random words plus numbers/symbols) instead of short, complex but hard‑to‑remember passwords, following modern guidelines that favor length and memorability.
  • Avoid sharing passwords; never write them on sticky notes near the computer, and consider using a reputable password manager for household accounts where appropriate.
  • Review accounts periodically and delete or disable ones that are no longer needed, updating passwords and permissions if household circumstances change.

Small checklist to follow

  • One user, one account; no shared main logins.
  • Daily use on standard accounts; admin account only for configuration tasks.
  • Strong, unique passwords and MFA where available, plus occasional cleanup of old or unused accounts.