Hansoft features 256-bit AES (Advanced Encryption Standard) for communication/storage and SHA-256 for password hashing.
The general security policy is set in the Administration section, by clicking on Security policy.
The Hansoft server license pane in the Administration section
The default "password security policy" is relatively non complex (for usability reasons) and it is recommended that you add complexity so that the password is harder to break by guessing (longer password length for example).
Editing the password security policy
Certain security policies can also be set on a per-user basis.
Editing a user
If a user can change the password, this can be achieved in his/her options menu.