Two-factor authentication

Two-factor authentication (2FA) adds an extra layer of security to your account. When enabled, you'll need both your password and a code from your authenticator app to sign in.

Setting up 2FA

1. Go to your settings and open the Security tab
2. Find the two-factor authentication section
3. Click Enable 2FA
4. Scan the QR code with your authenticator app (Google Authenticator, Authy, 1Password, or similar)
5. Enter the 6-digit code from your app to confirm
6. Save the backup codes in a safe place

Signing in with 2FA

Once 2FA is enabled, the sign-in flow adds one extra step:

1. Enter your email and password as usual
2. You'll be prompted for a verification code
3. Open your authenticator app and enter the current 6-digit code
4. You're signed in

Backup codes

When you first enable 2FA, you're given a set of backup codes. These are single-use codes that let you sign in if you lose access to your authenticator app.

Store these somewhere safe — a password manager is ideal. Each backup code can only be used once.

Disabling 2FA

If you need to disable 2FA:

1. Go to your settings, Security tab
2. Find the two-factor authentication section
3. Click Disable 2FA
4. Confirm with your password

If you're locked out

If you've lost access to both your authenticator app and your backup codes, email [email protected] for help recovering your account.

Do I need 2FA?

2FA isn't required, but we strongly recommend it — especially for workspace Owners and Admins who have access to sensitive data and team management capabilities. It takes just a few minutes to set up and significantly reduces the risk of unauthorised access.

Next steps

Learn about plans and billing to manage your subscription.