Security Settings
Learn how to secure your Digit Tally account with strong passwords, two-factor authentication, and other security measures.
Accessing Security Settings
- Click Profile Menu
- Select Security
- Security settings page opens
[SCREENSHOT: Security menu option]
Password Management
Changing Password
Requirements:
- Minimum 8 characters
- At least one uppercase letter
- At least one lowercase letter
- At least one number
- At least one special character (!@#$%^&*)
Change Process:
- Click Change Password
- Enter current password
- Enter new password
- Confirm new password
- Click Update Password
[SCREENSHOT: Change password form]
Password Strength Indicator
Strength Levels:
- ❌ Weak - Too short or simple
- ⚠️ Fair - Meets minimum requirements
- ✅ Good - Strong combination
- ✅✅ Excellent - Very strong, recommended
Tips for Strong Passwords:
- Use mix of characters
- Avoid common words
- Don't use personal information
- Use unique password for Digit Tally
- Consider using password manager
[SCREENSHOT: Password strength indicator]
Forgot Password
Reset Process:
- Go to login page
- Click Forgot Password
- Enter your email address
- Receive reset link via email
- Click link and set new password
Two-Factor Authentication (2FA)
What is 2FA?
Additional security layer requiring:
- Your password (something you know)
- A code from your phone (something you have)
Benefits:
- Prevents unauthorized access
- Protects even if password is stolen
- Required for sensitive operations
- Peace of mind
[SCREENSHOT: 2FA concept illustration]
Enabling 2FA
See detailed guide: Two-Factor Authentication Setup
Quick Steps:
- Go to Security Settings
- Click Enable 2FA
- Scan QR code with authenticator app
- Enter verification code
- Save backup codes
- 2FA enabled
Supported Authenticator Apps:
- Google Authenticator
- Microsoft Authenticator
- Authy
- 1Password
- LastPass Authenticator
[SCREENSHOT: Enable 2FA button]
2FA Status
When Enabled:
- ✅ Badge shown in security settings
- Required for every login
- Required for sensitive actions
- Can use backup codes if needed
Managing 2FA:
- View status
- Regenerate backup codes
- Disable 2FA (requires password)
[SCREENSHOT: 2FA enabled status]
Login History
View Login Activity
Track all login attempts to your account:
History Shows:
- Date and time
- Success or failed attempt
- Device and browser
- Location (city, country)
- IP address
Reviewing History:
- Check for unfamiliar locations
- Look for failed login attempts
- Verify recent activity is yours
- Report suspicious activity
[SCREENSHOT: Login history log]
Security Alerts
Automatic Alerts for:
- Login from new device
- Login from unusual location
- Multiple failed login attempts
- Password change
- 2FA disabled
- Bank account changes
Alert Delivery:
- Email notification
- In-app notification
- SMS (if enabled)
[SCREENSHOT: Security alert example]
Account Recovery
Backup Codes
When 2FA is Enabled:
- Receive 10 backup codes
- Each code can be used once
- Use if you lose phone or authenticator app
- Store securely (not on your phone!)
Generating New Backup Codes:
- Go to Security Settings
- Click Regenerate Backup Codes
- Old codes invalidated
- New codes shown
- Save/print immediately
[SCREENSHOT: Backup codes display]
Recovery Email
Set Recovery Email:
- Different from login email
- Used for account recovery
- Receives security alerts
- Used if primary email compromised
Setting Recovery Email:
- Go to Security Settings
- Enter recovery email address
- Verify via code sent to recovery email
- Recovery email active
[SCREENSHOT: Recovery email setup]
Data & Privacy
Data Export
Export Your Data:
- Click Export Data
- Select data to export:
- Invoices
- Customers
- Suppliers
- Financial reports
- All data
- Choose format (Excel, CSV, PDF)
- Export prepared and emailed to you
[SCREENSHOT: Data export options]
Account Deletion
Delete Account:
- See Account Information
- 30-day grace period
- All data permanently deleted after 30 days
- Cannot be recovered
Permission Management
Team Member Permissions
Control what team members can access:
- View only
- Edit permissions
- Admin access
- Custom roles
Managing Permissions:
- Go to Security Settings > Team Permissions
- Select team member
- Adjust permissions:
- Sales App access
- Suppliers App access
- Accounting App access
- Financial reports access
- Save changes
[SCREENSHOT: Team permissions]
Security Best Practices
Recommendations
- Strong Password - Use unique, complex password
- Enable 2FA - Always use two-factor authentication
- Regular Password Changes - Update every 3-6 months
- Review Sessions - Check active sessions monthly
- Monitor Login History - Look for suspicious activity
- Secure Backup Codes - Store in safe place
- Don't Share Credentials - Never share password
- Public Wi-Fi Caution - Avoid or use VPN
- Keep Software Updated - Update browser regularly
- Logout When Done - Especially on shared computers
Red Flags to Watch For
⚠️ Warning Signs:
- Login from unfamiliar location
- Multiple failed login attempts
- Password reset you didn't request
- Changes you didn't make
- Unexpected security alerts
- Unfamiliar active sessions
If You Detect Suspicious Activity:
- Change password immediately
- Sign out all other sessions
- Enable 2FA if not already enabled
- Review recent account activity
- Contact Digit Tally support
- Check connected email accounts
Security Compliance
Nigerian Data Protection
Digit Tally complies with:
- Nigeria Data Protection Regulation (NDPR)
- Industry security standards
- PCI DSS for payment data
- SOC 2 certification (in progress)
Your Data:
- Encrypted in transit (SSL/TLS)
- Encrypted at rest
- Regular security audits
- Backup and disaster recovery
- Secure data centers
Support
Security Support
Need Help?
- Email: security@digit-tally.io
- Report suspicious activity immediately
- 24/7 security incident response
Reporting Security Issues:
- Suspected account compromise
- Phishing attempts
- Vulnerabilities discovered
- Lost device with access
What's Next?
- Two-Factor Authentication - Detailed 2FA setup
- Account Information - Profile settings
- Connected Accounts - Bank account security
Enable 2FA today! It's the single most effective way to protect your Digit Tally account and business data.