A one-way process that scrambles a password into a fixed string before storing it, so even if your database leaks, the real passwords can't be read back out. Good hashing uses deliberately slow algorithms like bcrypt or Argon2 to make guessing expensive.