Security

Keep your CatchIntent account secure with two-factor authentication and good security practices.

Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security to your account. Even if someone gets your password, they can’t access your account without the second factor.

Setting Up 2FA

1. Go to Settings → Account

2. Find “Two-Factor Authentication”

3. Click “Enable 2FA”

4. Scan the QR code

   Use an authenticator app like:

   • Google Authenticator
   • Authy
   • 1Password
   • Microsoft Authenticator

5. Enter the verification code

   Type the 6-digit code from your authenticator app to confirm setup.

6. Save your backup codes

   You’ll receive backup codes. Store these somewhere safe—they’re your way back in if you lose access to your authenticator app.

Caution

Save your backup codes securely. If you lose your authenticator app and don’t have backup codes, you may lose access to your account.

Using 2FA

After enabling 2FA:

1. Enter your email and password as usual
2. You’ll be prompted for a verification code
3. Open your authenticator app and enter the 6-digit code
4. You’re logged in

Backup Codes

Backup codes are one-time use codes for when you can’t access your authenticator app.

To use a backup code:

1. On the 2FA verification screen, click “Use backup code”
2. Enter one of your saved backup codes
3. You’ll be logged in (that code is now used)

To regenerate backup codes:

1. Go to Settings → Account
2. Click “Regenerate Backup Codes”
3. Save the new codes (old codes no longer work)

Tip

Regenerate backup codes if you’ve used several or if you think they may have been compromised.

Disabling 2FA

If you need to disable two-factor authentication:

1. Go to Settings → Account
2. Click “Disable 2FA”
3. Enter your password to confirm
4. 2FA is removed from your account

Password Security

Choosing a Strong Password

Your password should be:

• At least 12 characters long
• Unique to CatchIntent (not reused elsewhere)
• A mix of letters, numbers, and symbols
• Not easily guessable (avoid names, birthdays, common words)

Changing Your Password

1. Go to Settings → Account
2. Click “Change Password”
3. Enter your current password
4. Enter and confirm your new password
5. Save

Forgot Your Password?

1. Go to the login page
2. Click “Forgot password?”
3. Enter your email address
4. Check your email for a reset link
5. Click the link and set a new password

Session Management

Active Sessions

You can see where your account is currently logged in:

1. Go to Settings → Account
2. View Active Sessions

Each session shows:

• Device type
• Browser
• Location (approximate)
• Last active time

Signing Out Other Sessions

If you see a session you don’t recognize:

1. Click “Sign out” next to that session
2. That device will be immediately logged out

Note

If you see unfamiliar sessions, change your password immediately and enable 2FA if you haven’t already.

Security Best Practices

Practice	Why It Matters
Enable 2FA	Protects against password theft
Use unique password	Prevents credential stuffing
Check sessions regularly	Detect unauthorized access
Don’t share credentials	Each team member should have their own account
Log out on shared devices	Prevent others from accessing your account

Connected Apps

If you’ve connected Slack or other apps:

1. Go to Alerts → Notifications
2. Review connected integrations
3. Disconnect any you no longer use

Removing unused integrations reduces your security surface area.

Reporting Security Issues

If you discover a security vulnerability or suspect your account has been compromised:

• Email: [email protected]
• Change your password immediately
• Enable 2FA if not already enabled
• Review and revoke suspicious sessions