Keepface
Sign up

Account security, 2FA, sessions

Enable 2FA from User account settings with any TOTP authenticator app. Audit active sessions regularly; sign out unknown devices.

Enable 2FA

  1. User account → Security → 2FA
  2. Scan the QR with Google Authenticator, 1Password, Authy, or any TOTP app
  3. Confirm with the 6-digit code
  4. Save recovery codes, printable, one-time use, for lost-device recovery

After this, every login requires the code in addition to your password.

Active sessions

Security → Active sessions lists every device currently logged in (browser, OS, location, last activity). Sign out anything unrecognized immediately and rotate your password.

Password hygiene

  • Use a unique 12+ character password (a password manager handles this)
  • Never share your password, Keepface staff will never ask for it
  • Rotate if you suspect compromise (anywhere, not just Keepface)

Account compromise

If you think your account is compromised:

  1. From any logged-in session: Security → Sign out everywhere
  2. Reset password from the login page
  3. Re-enable 2FA (the secret rotates)
  4. Email [email protected] to flag the incident, we can audit account activity for unusual patterns
Was this article helpful?