Turning on Two-Factor Authentification
To turn on 2FA, click the Profile icon in the left-hand sidebar, then go to My Stuff > Two-Factor Authentication. Turn the toggle on and then follow the on-screen instructions to enable it inside your account.
You can use a compatible app (Authy, FreeOTP, Google Authenticator, Microsoft Authenticator, LastPass or 1Password). If you don't have any of those already, there are instructions on that page to download Google Authenticator app for your device.
Once you've scanned the QR code or entered the provided code, you'll be presented with a verification code which you'll need to enter in the box at the bottom of that page to complete the setup for 2FA. Click Confirm and you should see a confirmation screen with a nice green tick and then you're all good to go.
Accessing your recovery codes
Once you have setup 2FA, you'll see a 'Get recovery codes' button in the settings, click this and you'll be presented with a set of codes which you need to save somewhere safe. If you lose access to your device, these one-time codes can be used in the listed order to access your account. Remember to save them in a safe place to avoid getting locked out of your account.
What happens if I lose my device and my recovery codes?
In the event that you lose your device and recovery codes, you can ask any admin user on your account to send you a recovery code. They just need to log in, go to Settings > Users and Teams > Users and click 'Send 2FA recovery code' to email you a code.
If you're the only user of the account, or the admin users are not available, we do have a disaster recovery process in place should the worst happen. This will involve asking you specific billing and account-related questions and once your identity is confirmed, we'll email you the recovery codes to access your account.