FIDE is storing passwords in plaintext. Careful if you make an account on their site. Don’t use the same password you use for any other site.
This is the kind of failure that indicates no one who knows anything about security was involved in their site, so it is probably best to consider any information that you give a FIDE website, such as identification documents to get a FIDE ID, to be public information.
Details: https://grahamcluley.com/2015/08/chess-fide-website-password/
For those who don’t know it, a hacker still might be unable to access the password file, BUT an employee could steal it, cf. Ashley Madison. Kinda like banks need to keep an eye on their tellers.
The better system is a hash. I am not expert on this but as I understand it, a hash is the password encrypted, and the password is also used as the encryption key, so you would have to try all the possible passwords to see which ones produce that cryptext. Kinda like locking the key inside the piggy bank. Then they add some random junk into the cryptext. Now, you enter your password and the system encrypts it and checks the cryptext against the longer cryptext on the server, and if the longer cryptext is the same as the cryptext plus some junk, you get logged in.