Employer Login Frequently Asked Questions (FAQs)
- General Questions
- Password Questions
- Employer Access Code Questions
- Security Question & Answer Questions
- Login Image & Phrase Questions
- Security & Privacy Questions
Q. What is a primary security administrator?
A. The primary security administrator for your company has access to your company's information on Principal.com, and has the authority to give access to other administrators at your company. (A primary administrator is sometimes called a senior administrator.) If you do not know the primary security administrator for your company, call us:
- Group insurance clients please call 1.800.621.6280.
- Retirement/401(k) clients please call 1.877.475.3436.
Q. What is a secondary security administrator?
A. A secondary administrator is a person at an employer customer location responsible for administering your contract on Principal.com. The secondary cannot give access to other administrators.
Q. How do I get an administrator password?
A. If you're a primary security administrator, establish your own password by accessing the establish your new username and password link. After you establish your username and password, you will also need to request an employer access code. If you have trouble with either of these processes, call us:
- Group insurance customers please call 1.800.621.6280.
- Retirement plan customers please call 1.877.475.3436.
If you have additional people you would like to have access the site, you can set-up secondary administrators. If you're not sure how to do that, see these instructions for setting up secondary administrators (PDF).
If you're a secondary administrator, please contact your primary security administrator, who will be able to give you access. You can then follow the processes outlined above.
Q. What if the security administrator leaves the company?
A. Once the company has notified us of this change, a new security administrator will be named. The new security administrator can establish his/her own password by accessing the establish your new username and password link, or by calling us:
- Group insurance customers please call 1.800.621.6280.
- Retirement plan customers please call 1.877.475.3436.
Q. How do employees of my company get a password and access their information?
A. The information employees can access is different than information administrators can access. Employees can view their personal information by going to Personal Login and entering their username and password. For more information about accessing personal accounts, go to the Login Guide.
Q. Can I change my password online?
A. Yes, you can change your password online.
Q. What if I forget my password?
A. Use the forgot your password link and follow the prompts to obtain a new password.
Q. What is an employer access code?
A. An employer access code is a security enhancement we've implemented to further protect sensitive customer information. Employers will need to use this code each time they log in as an Employer. Employers will log in with a username, password and an employer access code.
To get your access code, you request your employer access code online. The process is quick and simple, but if you should have problems you can call customer service.
Q. What if I forget my employer access code?
A. You’ll need to request a new employer access code online. An additional security measure for the employer access code is if you lose or forget your access code, you won’t be able to use the same code again.
Q. Why do we need this employer access code and what benefit does it provide me?
A. Requiring a unique employer access code to log in is an additional security measure which helps protect sensitive customer information.
The Principal takes information security very seriously and places the highest priority on privacy and confidentiality of customer data. We continuously upgrade and make enhancements to how we safeguard sensitive customer information.
Q. Why canít I change my employer access code to something I can remember?
A. We understand that it would be easier for you if you could change your employer access code to something that you can remember. On the other hand, research has shown that many users choose relatively weak (or otherwise easily-guessed) passwords. Weak passwords increase the risk of unauthorized access to sensitive employee information.
Why is that a big deal? Well, criminals and information brokers are increasingly aggressive and competent in their data-gathering efforts. As a result, there is increasing concern about the safety of sensitive personally identifiable information. And rightly so. Folks trying to gather this information generally do bad things with it once they get it (identity theft, stealing money, etc.).
There are a variety of ways for companies that conduct business online to secure sensitive customer data. We believe that the combination of a username and password, along with an employer access code is the right combination of simplicity and strength required to meet the range of threats faced by Internet-enabled business today.
In order to maintain optimal security, we recommend you protect your employer access code just like your other unique, high-security, login credentials Ė for example your personal or business banking username & password.
Q. Who can request an employer access code?
A. Only the primary and secondary administrators can request employer access codes, but they must request their own. A primary administrator cannot request one on behalf of a secondary and visa versa.
Q. What are security questions and answers?
A. Security questions and answers are another security feature. If you forget your password, or choose to change your password, we will verify your identity by asking you to answer your security questions and answers. When you establish your own username and password, we'll also ask you to select and answer your security questions. As with your password, it is your responsibility to keep your security questions and answers confidential.
Q. How do I change my security questions and answers?
Q. What happened to all of the new security questions and answers that you recently asked me to complete?
A. Nothing has happened to them. The questions & answers previously provided are still valid. We will continue to ask you to correctly answer your security questions when using some of our online features (such as forgot password or forgot username) as a way to verify your identity prior to providing you your forgotten password or username.
Q. When will I be using the security questions?
A. We will ask you to correctly answer your security questions when using some of our online features (such as forgot password or forgot username) as a way to verify your identity prior to providing you your forgotten password or username.
In the future, we will also ask you to answer a security question if we notice unusual activity when you log in to your account. Something that might indicate someone that is not authorized to access your account is trying to log in. For example, if we notice a log in attempt in Iowa at noon, and just a few minutes later a log in attempt in Japan that would indicate unusual activity.
Q. What is the purpose of this new login image and phrase?
A. We continue to upgrade and enhance our security systems to combat evolving online risks. The new login image and phrase is a secret between you and the Principal Financial Group website. Each time you log in to your account and see your login image and phrase, it helps ensure you are at The Principal website and not a phishing site. (Phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity or website in an electronic communication.)
A login image and phrase combination is an increasingly common technology used by many financial firms to help protect account information.
Q. Why can’t I pick my own phrase?
A. Allowing people to pick their own phrase makes it more likely that people will pick something that could be tied back to their personal information. Things like a birthday or anniversary, which are easier for a criminal to guess about someone. If the phrase that goes with the picture is random, it’s much more difficult for criminals to attempt to steal information.
Q. What is phishing?
A. Phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity or website in an electronic communication.
Q. What do I do if I don’t think that is my picture/phrase?
A. First, verify that you are in fact on our website and that the web address or URL you entered is correct. Sometimes simple items such as a misspelled word (ie Principel vs Principal) can direct you to an incorrect site. Second, verify that you have in fact entered the correct username, you can verify this as the username will display as you entered it above the image, phrase and password box. If both the site and the username are accurate then users should call immediately. We will follow our standard procedures for reporting fraudulent activity and/or account breaches.
Q. How can I change my login image and phrase?
A. You can log in to change your login image and phrase.
Q. Is my information secure?
A. The information for the accounts you have with the Principal Financial Group is kept secure and confidential through multiple security features and procedures.
- The information you request from our website for your company and employee accounts can only be accessed with a unique combination of a username, password and an employer access code. It is your responsibility to keep your login information confidential.
- Do not share your username, password or employer access code with anyone. Our employees and associates will never ask you for your password.
- Never keep your password or employer access code where others may see.
- Contact us immediately to change your password or request a new employer access code if you suspect someone has discovered it.
- Information you submit through our website, as well as the information we send back to you while you are visiting our website, is protected while passing through the Internet using strong encryption ("scrambling" to make it incomprehensible) when necessary.
- Our secure server software encrypts information, ensuring that Internet communications through our website stay private and protected.
- Your account information is not permanently stored on our Web server. The information only resides on our Web server while you are viewing the information. It is permanently stored on our secured corporate computer systems.
- Our corporate network systems, which store your account information, use proven security controls.
- We have data security staff whose sole responsibility is to ensure the security of the information we process and store.
- The Principal Financial Group has policies and procedures in place to limit access to your information to only those who have a business need to view it.
A. Please review our privacy and security policy.
Q. Do I need any special equipment to access this part of the site?
A. You will need an SSL-enabled browser to access this part of the site.
Q. Why do I need an SSL-enabled browser?
A. To ensure the security of your confidential account information, we use proven security software to encrypt the information before it is transmitted through the Internet. We only allow confidential information to be submitted for transmission if your browser is compatible with SSL, our security software. If your browser is not compatible, you will receive a message indicating your transaction can't be completed because of the security risk.