Managing your account and security
Everything about your account — your name and email, your password, and extra sign-in protection — lives in one place: Settings. This guide walks through each part, in plain terms, so you can keep your account current and secure.
#Where your settings live
Open the account menu in the top corner (it shows your name and email) and choose Settings. That drops you into the settings area, which has its own short sidebar:
- Profile — your name and email address.
- Security — your password, two-factor authentication, and passkeys.
Click either one to switch between them; the section you're on is highlighted. Everything below is reached from this sidebar.
#Your profile
On the Profile page you can update the two things that identify you:
- Name — how you appear to teammates across the app.
- Email address — where the app reaches you, and the address you sign in with.
Make your changes and click Save. That's it.
#Verifying your email
If your email address hasn't been confirmed yet, you'll see a short note under the email field letting you know it's unverified, along with a link to re-send the verification email. Click it, then open the message we send and follow the link inside to confirm the address. Once confirmed, the note goes away.
#Deleting your account
At the bottom of the Profile page is Delete account. This permanently removes your account and all of its data, and it cannot be undone. To protect you, we ask for your password to confirm before anything is deleted. Only use this if you're certain.
#Your password
The Security page opens with Update password. To change it, enter:
- Your current password,
- Your new password, and
- the new password again to confirm it.
Then click Save. We recommend a long, unique password — the kind a password manager generates and remembers for you. If something doesn't match, the form tells you and lets you try again without retyping everything.
#Two-factor authentication
Two-factor authentication (2FA) adds a second step at sign-in: after your password, you enter a short, constantly-changing code from an app on your phone. Even if someone learns your password, they can't get in without that code. It's the single best thing you can do to protect your account.
You'll need an authenticator app on your phone — for example Google Authenticator, 1Password, Authy, or the built-in codes in your password manager.
#Turning it on
- On the Security page, find Two-factor authentication and click Enable 2FA.
- A window opens with a QR code. In your authenticator app, add a new account and scan the code. Prefer typing? Choose enter the code manually and paste the setup key into your app instead.
- Click Continue, then enter the 6-digit code your authenticator app is now showing and click Confirm.
Once confirmed, two-factor authentication is on, and you'll be asked for a code from your app each time you sign in.
#Recovery codes
When 2FA is on, you also get a set of recovery codes. These are your backup: if you ever lose your phone or can't reach your authenticator app, a recovery code gets you back into your account.
Click View recovery codes to reveal them, and store them somewhere safe — a password manager is ideal. Each code works only once and disappears after it's used. Running low, or think a code was exposed? Click Regenerate codes to replace the whole set with a fresh batch (the old ones stop working immediately).
#Turning it off
If you need to remove two-factor authentication, click Disable 2FA in the same section. You can always turn it back on later — just note you'll set it up fresh, with a new QR code and new recovery codes.
#Passkeys
Below two-factor authentication, the Security page offers passkeys — a way to sign in without a password at all. A passkey lives on your device and is unlocked the way you already unlock it: your fingerprint, your face, or your device PIN.
- Click Add passkey (or the register button) and follow your device's prompt to create one.
- Passkeys you've added are listed here, and you can remove any of them at any time.
Passkeys are optional. They're a convenient, phishing-resistant alternative to typing a password, and they work alongside the rest of your security settings.
#The short version
- Everything's under Settings, reached from the account menu in the top corner: Profile and Security.
- Profile — update your name and email; verify your email if prompted; delete your account here (permanent).
- Password — enter your current and new password to change it; make it long and unique.
- Two-factor authentication — scan the QR code with an authenticator app and confirm the 6-digit code; save your recovery codes somewhere safe.
- Passkeys — optional passwordless sign-in using your device's fingerprint, face, or PIN.