Security Settings

Protect your WorkSnap Pro account with password management and two-factor authentication.

Overview

Security settings help protect your account and your customers' data. Every team member manages their own security settings.

To access: Go to Settings > Security

Password Management

Changing Your Password

To change your password:

1. Go to Settings > Security
2. Click Reset Password or Change Password
3. You'll receive an email with a password reset link
4. Click the link in the email
5. Enter your new password
6. Confirm the new password
7. Click Save or Update Password

Note: Password resets are handled via email for security. You won't enter your old password in the app.

Password Requirements

Strong passwords help protect your account:

• Minimum length: 8 characters (12+ recommended)
• Mix characters: Use uppercase, lowercase, numbers, and symbols
• Avoid common passwords: Don't use "password123" or similar
• Unique password: Don't reuse passwords from other sites

Forgot Your Password?

If you can't log in:

1. Go to the login page
2. Click Forgot Password?
3. Enter your email address
4. Click Send Reset Link
5. Check your email (and spam folder)
6. Click the link and create a new password

Reset links expire after a limited time for security.

Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security by requiring a code from your phone in addition to your password.

How 2FA Works

1. You enter your email and password
2. WorkSnap asks for a verification code
3. You open your authenticator app
4. Enter the 6-digit code shown
5. You're logged in

Even if someone knows your password, they can't access your account without your phone.

Setting Up 2FA

What you'll need:

• An authenticator app on your phone (see recommendations below)
• Access to your WorkSnap account

Steps:

1. Go to Settings > Security
2. Find Two-Factor Authentication section
3. Click Enable 2FA or Set Up
4. Open your authenticator app on your phone
5. Scan the QR code shown on screen
6. Enter the 6-digit code from your app
7. Click Verify or Confirm
8. Save your backup codes (important!)

Recommended Authenticator Apps

App	Platform	Notes
Google Authenticator	iOS, Android	Simple, widely used
Microsoft Authenticator	iOS, Android	Includes backup features
Authy	iOS, Android, Desktop	Cloud backup, multi-device
1Password	iOS, Android, Desktop	Built into password manager

All these apps work with WorkSnap Pro's 2FA.

Backup Codes

When you enable 2FA, you'll receive backup codes. These are one-time codes you can use if you lose access to your authenticator app.

Important:

• Save backup codes somewhere safe
• Each code can only be used once
• Store them separately from your password
• Consider printing them and keeping in a secure location

Using 2FA to Log In

After 2FA is enabled:

1. Enter your email and password as usual
2. When prompted, open your authenticator app
3. Find WorkSnap Pro in your app
4. Enter the current 6-digit code
5. Click Verify

Tip: Codes change every 30 seconds. If a code doesn't work, wait for the next one.

Lost Access to Authenticator

If you can't access your authenticator app:

Option 1: Use a backup code

1. On the 2FA prompt, look for Use backup code link
2. Enter one of your saved backup codes
3. You'll be logged in

Option 2: Contact an Owner

1. Contact an Owner in your organization
2. They may be able to assist with account recovery
3. You may need to verify your identity

Option 3: Contact Support

1. If you're the only Owner, contact support
2. Provide proof of identity and account ownership
3. Support can assist with account recovery

Disabling 2FA

To turn off two-factor authentication:

1. Go to Settings > Security
2. Find Two-Factor Authentication
3. Click Disable 2FA
4. Enter your password or verification code
5. Confirm the action

Warning: Disabling 2FA makes your account less secure. Only disable if necessary.

Session Security

Active Sessions

WorkSnap may show your active login sessions:

• Device type: Phone, tablet, or computer
• Browser: Chrome, Safari, Firefox, etc.
• Location: Approximate location based on IP
• Last active: When you last used that session

Signing Out Other Sessions

If you see unfamiliar sessions or want to secure your account:

1. Go to Settings > Security
2. Find Active Sessions or Logged-in Devices
3. Click Sign Out next to specific sessions
4. Or click Sign Out All Other Sessions

This forces re-login on all other devices.

When to Sign Out Sessions

Consider signing out sessions when:

• You see a device you don't recognize
• You've lost a phone or laptop
• You used a shared or public computer
• You're concerned about account security

Account Security Best Practices

For Everyone

1. Use a strong, unique password - Different from other accounts
2. Enable two-factor authentication - Best protection available
3. Don't share your login - Each person should have their own account
4. Log out on shared devices - Never stay signed in on public computers
5. Keep your email secure - Password resets go there

For Business Owners

1. Require 2FA for team - Consider making it mandatory
2. Review team access regularly - Remove people who leave
3. Use appropriate roles - Don't give admin access unnecessarily
4. Monitor for unusual activity - Know who's accessing what

Recognizing Security Threats

Phishing emails - Fake emails pretending to be from WorkSnap

• Check the sender's email address carefully
• Don't click links in suspicious emails
• Go directly to the app instead of clicking email links
• WorkSnap will never ask for your password via email

Suspicious login attempts

• Unexpected 2FA prompts when you're not logging in
• Password reset emails you didn't request
• Notifications about logins from unfamiliar locations

What to do:

1. Don't approve unexpected 2FA requests
2. Change your password immediately
3. Review and sign out unfamiliar sessions
4. Enable 2FA if not already on
5. Contact support if you believe your account was compromised

Security Settings by Role

All team members can manage their own security settings:

Setting	Owner	Admin	Member
Change own password	Yes	Yes	Yes
Enable/disable own 2FA	Yes	Yes	Yes
View own sessions	Yes	Yes	Yes
Sign out own sessions	Yes	Yes	Yes

Note: You manage your own account security. Owners and Admins cannot change other users' passwords or 2FA settings.

Common Security Questions

Is my data encrypted?

Yes. WorkSnap Pro uses encryption:

• In transit: All data encrypted via HTTPS
• At rest: Database encryption for stored data
• Payments: Handled by PCI-compliant processors (Stripe, PayPal, Square)

Can I require 2FA for my team?

Currently, 2FA is optional for each user. Encourage your team to enable it by explaining the security benefits.

What happens if I lose my phone?

1. Use a backup code to log in
2. Disable 2FA on the compromised account
3. Set up 2FA again with your new phone
4. Contact support if you're locked out

How do I know if my account was hacked?

Warning signs:

• Documents created that you didn't make
• Settings changed unexpectedly
• Password changed without your knowledge
• Emails sent that you didn't write
• Unfamiliar login sessions

If you suspect compromise, immediately change your password and enable 2FA.

---

Previous: Organization Settings Next: Subscription & Billing