Account Security
BeePass provides several mechanisms to protect your account: two-factor authentication, active session management, device verification, and account deletion. All these settings are accessible from Settings then the Security tab.
Two-Factor Authentication (TOTP)
Enabling TOTP (Time-based One-Time Password) adds an extra layer of security to your login. This feature is optional for breeders.
Enabling TOTP
- Go to Settings then the Security tab
- Click Enable Two-Factor Authentication
- Scan the displayed QR code with your authenticator app (Google Authenticator, Authy, Microsoft Authenticator, or any compatible app)
- Write down the 8 backup codes (format
XXXX-XXXX) and store them in a safe place - Tick the checkbox confirming you have saved your backup codes
- Enter the 6-digit code displayed by your app to confirm activation
The 8 backup codes are your only recourse if you lose access to your authenticator app. Each code can only be used once. Store them in a secure location (password manager, safe). They will never be displayed again after this step.
Logging In with TOTP
Once TOTP is enabled, the login process takes place in two steps:
- Enter your email and password as usual
- BeePass prompts you for a 6-digit code -- open your authenticator app and enter the displayed code
If you do not have access to your app, use one of your backup codes instead of the 6-digit code.
Disabling TOTP
You can disable TOTP from the Security tab. Verification of your current TOTP code is required to confirm deactivation.
If you have used up all your backup codes, disable and then re-enable TOTP. A new set of 8 codes will be provided.
Active Sessions
The Security tab displays the list of your active sessions with the following information:
| Information | Description |
|---|---|
| Browser | Chrome, Firefox, Safari, etc. |
| Operating System | Windows, macOS, Linux, iOS, Android |
| IP Address | Connection IP |
| Location | City and country (estimate) |
| Last Activity | Date and time of the last access |
You can revoke an individual session by clicking Disconnect next to it. The disconnection takes effect immediately on the affected device.
If you do not recognise a device or location, revoke the session immediately and change your password.
Changing Your Password
To change your password:
- Open the Security tab
- Enter your current password
- Enter the new password (minimum 8 characters, including at least one uppercase letter, one lowercase letter, one digit, and one special character)
- A strength indicator helps you choose a strong password
- Confirm
When you change your password, all your existing sessions are automatically revoked. You will need to log in again on each device.
Device Verification
When you log in from a new device (new browser, new computer, or new phone), BeePass performs a silent verification based on the device fingerprint. If the device is not recognised, a discreet notification informs you. No action is required on your part: this measure is designed to detect unusual login activity.
Deleting Your Account
Account deletion is permanent and irreversible. To delete your account:
- Open the Security tab
- Scroll down to the Danger Zone section
- Click Delete My Account
- Confirm in the dialog box
Deletion results in the loss of all your data: queens, evaluations, pedigrees, conversations, and contacts. Queens you have shared on the BeePass Index will remain visible but will no longer be associated with your profile.
See Also
- Create My Account -- registration and email MFA
- Plans and Subscriptions -- manage your subscription
- FAQ -- frequently asked questions