No password. That’s the full policy.
When you need to sign in to Loupely, you enter your email address and a sign-in link arrives in your inbox within about a minute. You click it, you’re signed in. The same flow works whether you’re signing into the Loupely extension, the Loupely Lens extension, or the account dashboard at useloupely.com. One email address, one account, the same link-based process everywhere.
How it works #
When you request the link, the system generates a one-time token tied to your account and sends it as a URL in the email. Clicking the URL authenticates the token, signs you in, and marks the token as used. The token expires after 15 minutes whether or not it’s clicked.
Because the token is single-use and time-limited, there’s nothing to phish. An attacker who intercepts the link can’t reuse it once you’ve clicked it, and it expires on its own if unused.
If the link doesn’t arrive #
Check your spam folder. If it’s not there, request a new one. The old link is invalidated when the new one is generated.
Loupely will never ask you for your password because there is no password to ask for.