Protecting your account and case data is essential.
**Password Security:**
**Create a Strong Password:**
- At least 12 characters
- Mix of uppercase and lowercase
- Include numbers and symbols
- Avoid common words or phrases
- Don't reuse passwords from other sites
**Change Regularly:**
- Update every 90 days
- Change immediately if compromised
- Don't share with anyone
**Two-Factor Authentication (2FA):**
**Enable 2FA:**
1. Go to Settings > Security
2. Click "Enable Two-Factor Authentication"
3. Scan QR code with authenticator app
4. Enter verification code
5. Save backup codes
**Why Use 2FA:**
- Adds extra layer of security
- Protects against password theft
- Required for accessing sensitive cases
**Session Security:**
**Automatic Logout:**
- Sessions expire after 4 hours of inactivity
- Always logout when done
- Don't use "Remember Me" on shared computers
**Active Sessions:**
View and manage your active sessions:
- See all logged-in devices
- Revoke suspicious sessions
- Monitor login history
**Data Privacy:**
**Privacy Settings:**
Control what information is visible:
- Profile visibility
- Case privacy defaults
- Team member visibility
- Activity sharing
**Data Encryption:**
All your data is protected:
- SSL/TLS encryption in transit
- AES-256 encryption at rest
- Encrypted database backups
**Permissions Management:**
**Review Regularly:**
- Team member access
- Case permissions
- Third-party integrations
- API access
**Suspicious Activity:**
**Warning Signs:**
- Unrecognized login attempts
- Unexpected password resets
- Unknown team invitations
- Missing or modified cases
**If Compromised:**
1. Change password immediately
2. Enable 2FA
3. Review account activity
4. Contact support
5. Check for unauthorized changes
**Security Checklist:**
□ Strong, unique password
□ Two-factor authentication enabled
□ Regular password updates
□ Review active sessions
□ Check privacy settings
□ Monitor account activity
□ Keep recovery email updated