Account Security

On the login page, click "Forgot Password". Enter your email address, and we will send you a secure link to reset your password.

Go to Settings > Security. Scan the setup QR code with an authenticator app (like Authy or Google Authenticator) and enter the 6-digit code to verify.

When you enable 2FA, we provide you with 10 backup codes. Store these safely! You can use a backup code to log in and disable 2FA if you lose your device.

If you are on an Enterprise plan, navigate to Settings > Team. Enter their email address and select their permission role (Admin, Editor, Viewer).

Admins have full access to the workspace, including billing, API keys, security settings, and team management.

Editors can create, modify, design, and delete QR codes. They can also view analytics. They cannot access billing or invite users.

Viewers can only log in to view the dashboard and download analytics reports. They cannot modify any QR codes.

Yes. We do not store any credit card information on our servers. All payments are processed securely by Stripe, which is PCI Level 1 compliant.

Yes. Our edge network uses strict SSL/TLS encryption for all dynamic redirects to protect users from man-in-the-middle attacks.

Yes, we are fully GDPR compliant. We do not collect personally identifiable information from users who scan QR codes.

Navigate to Settings > Security and scroll to the bottom. Click "Delete Account". Warning: This action is permanent and instantly deletes all data and pauses all active QR codes.

Yes, Enterprise plans include SAML SSO integration for Okta, Azure AD, and Google Workspace.

In the Security settings, you can view all active sessions (devices logged into your account) and remotely log them out.

Yes, we undergo annual SOC2 Type II audits. Enterprise customers can request our latest compliance report.

Yes. In the Developer Hub, you can whitelist specific IP addresses or CIDR blocks. Requests from unauthorized IPs will be instantly rejected.