Skip to main content

Password and Security

Ryan Lysa avatar
Written by Ryan Lysa
Updated today

Password and Security

Keep your account secure with strong passwords and security practices.

Password Requirements

  • Minimum Length: 8 characters

  • Must Include:

    • At least one uppercase letter

    • At least one lowercase letter

    • At least one number

    • At least one special character (!@#$%^&*)

Changing Your Password

  1. Go to Settings → Account → Security

  2. Click Change Password

  3. Enter current password

  4. Enter new password

  5. Confirm new password

  6. Click Update Password

Forgot Password?

  1. Go to login page

  2. Click Forgot Password

  3. Enter your email

  4. Check email for reset link

  5. Click link (valid for 1 hour)

  6. Create new password

Two-Factor Authentication (2FA)

What is 2FA?

Extra security requiring:

  1. Your password (something you know)

  2. Your phone (something you have)

Enabling 2FA

  1. Go to Settings → Security

  2. Click Enable Two-Factor Authentication

  3. Scan QR code with authenticator app:

    • Google Authenticator

    • Authy

    • 1Password

  4. Enter 6-digit code

  5. Save backup codes

Backup Codes

  • What: 10 single-use codes

  • When: Use if you lose your phone

  • Storage: Save in password manager or print

Disabling 2FA

  1. Go to Settings → Security

  2. Click Disable 2FA

  3. Enter password

  4. Enter current 2FA code

  5. Confirm disable

Security Best Practices

Strong Passwords

  • Use Password Manager: 1Password, LastPass, Bitwarden

  • Unique per Site: Don't reuse passwords

  • Length Over Complexity: Longer is better than complex

Phishing Protection

Watch for fake emails:

  • Real Preppable emails: From @preppable.com only

  • Suspicious links: Hover before clicking

  • Urgent requests: We never ask for password via email

Public Wi-Fi

  • Avoid: Don't log in on public Wi-Fi

  • Use VPN: If you must use public Wi-Fi

Device Security

  • Lock Screen: Use PIN/biometric

  • Keep Updated: Install OS updates

  • Antivirus: Use on Windows/Android

Account Access Log

View Login History

  1. Go to Settings → Security → Access Log

  2. See recent logins:

    • Date and time

    • IP address

    • Device type

    • Location (city, country)

Suspicious Activity?

If you see unfamiliar logins:

  1. Change Password Immediately

  2. Enable 2FA

  3. Review Team Members: Remove any ex-employees

  4. Contact Support: Report the incident

Session Management

Active Sessions

See all logged-in devices:

  • Web browser sessions

  • Mobile app (future)

  • API tokens (future)

Sign Out Everywhere

  1. Go to Settings → Security

  2. Click Sign Out All Devices

  3. You'll need to sign in again

Use when:

  • Lost or stolen device

  • Suspicious activity

  • Left logged in on public computer

Data Encryption

  • In Transit: SSL/TLS encryption

  • At Rest: AES-256 encryption

  • Passwords: bcrypt hashing (irreversible)

Related Articles
Email and Communication Settings
Creating Your Restaurant Account
SMS Delivery Problems
Did this answer your question?