MFA requires additional information when you log in to Member Online or Pension Online, our mobile app, or other Hostplus portals.
Using our online portals
When registering to use our online portals, you’re asked to choose a password, then set up an MFA verification method. For Member Online and Pension Online, you can receive your one-time PIN (OTP) as a key component of your MFA via the following options:
- an SMS sent directly to your mobile
- voice call authentication, with the OTP communicated in a voice call to your mobile or landline
- an authenticator app, like Google Authenticator or a similar secure solution, allowing you to receive an OTP even when outside mobile network coverage (expected to be available from mid-May 2025).
Each time you return to Member Online or Pension Online, a new OTP will be sent to you via your preferred method. You can change your OTP preference any time after logging in to your account and can register multiple options for flexibility.
Using our mobile app
For the Hostplus mobile app, you’ll receive an OTP only for your initial registration. Once registered, the app uses a secure digital certificate instead of OTP. Instead of a password, you can choose a PIN or a biometric authentication using fingerprint or face ID to log in. Your biometric information is stored only on your device and is not accessed by the app, ensuring privacy and security.