1. Overview
  2. Customer Management Portal
  3. Your Profile, Security & Account Management

Your Profile, Security & Account Management

Your profile page is the control centre for your personal account settings — your name, email address, password, account security, and account closure options. It is separate from your agency or workspace settings and applies only to your own login.

To access your profile, navigate to Settings → Profile.

Profile Information

Updating Your Name

Your display name appears throughout the management portal. To change it, update the Full Name field and click Save Profile. Changes take effect immediately.

Changing Your Email Address

Your email address is your login identifier and where account notifications are sent.

  1. Click Change Email in the profile section.

  2. Enter your new email address.

  3. Enter your current password to confirm the change.

  4. Click Update Email.

Note: Your new email address must not already be registered to another account.

Changing Your Password

  1. Enter your current password.

  2. Enter and confirm your new password.

  3. Click Change Password.

Passwords must be at least 8 characters and contain at least one uppercase letter, one lowercase letter, and one number.

Tip: If you have forgotten your current password, log out and use the Forgot Password link on the login page instead.

Two-Factor Authentication (2FA)

Two-factor authentication adds a second layer of security to your account. When enabled, logging in requires both your password and a verification code from a second source. Even if your password is compromised, your account remains protected.

The status badge at the top of the Two-Factor Authentication section shows whether 2FA is currently Enabled or Disabled.

Setting Up 2FA

You can enable 2FA using an authenticator app, SMS, or both at the same time.

Authenticator App (Recommended)

An authenticator app (such as Google Authenticator, Authy, or 1Password) generates a time-based six-digit code that refreshes every 30 seconds. This method works without a mobile signal or internet connection on your phone.

  1. Click Setup Authenticator App.

  2. Open your authenticator app and scan the QR code displayed on screen. If you cannot scan the QR code, enter the manual key shown beneath it.

  3. Enter the six-digit code shown in your app to confirm it is working correctly.

  4. Click Verify & Enable.

  5. Save your backup codes (see below).

SMS

SMS 2FA sends a six-digit code to your mobile phone number each time you log in.

  1. Click Setup SMS.

  2. Select your country code from the dropdown and enter your mobile number.

  3. Click Send SMS Code. A code will be sent to your phone within a few seconds.

  4. Enter the six-digit code and click Verify & Enable.

  5. Save your backup codes (see below).

Note: SMS codes are valid for 5 minutes. If you do not receive a code, wait at least 60 seconds before requesting another.

Using Both Methods

If you enable both an authenticator app and SMS, your account uses both simultaneously. At login you can choose which method to use. To add a second method after the first is already active, click Add SMS or Add Authenticator App from the Two-Factor Authentication section.

Logging In With 2FA

After entering your email and password correctly, you will be prompted for your verification code.

  • If you use an authenticator app, open your app and enter the current six-digit code.

  • If you use SMS, a code will be sent to your registered phone number automatically. Enter it when prompted. If you do not receive it, click Resend SMS (available after 60 seconds).

  • If you have both methods enabled, toggle between them using the App / SMS / Backup tabs in the prompt.

Remember This Device

When entering your 2FA code at login, you can check Don't ask again on this device for 30 days. This stores a secure token in your browser. For the next 30 days, logging in from that browser will skip the 2FA prompt automatically.

Note: Trusted device tokens are tied to your specific browser. Clearing browser data, switching browsers, or using a different device will require 2FA again. Trusted devices are also revoked automatically if you disable 2FA or change your phone number.

Backup Codes

When you first enable 2FA, ten one-time backup codes are generated and shown to you. Each code can be used once in place of a regular verification code — for example, if you lose access to your phone.

Store these codes securely — in a password manager, printed copy, or secure note. They are only shown once.

  • The Backup Codes section shows how many unused codes remain.

  • If you are running low (fewer than 3 remaining), you will see a warning.

  • Click Download Codes to save them as a plain text file.

Regenerating Backup Codes

If your backup codes are lost or compromised, you can generate a new set. This permanently invalidates all existing codes.

  1. Click Regenerate in the Backup Codes section.

  2. Enter your password to confirm.

  3. Click Regenerate Codes.

  4. Save the new codes immediately — they are only shown once.

Managing Trusted Devices

The Trusted Devices section lists every browser that has been granted the "remember for 30 days" exemption. Each entry shows the browser and operating system, the IP address it was added from, and when it was last used.

Revoking a Single Device

Click Revoke next to any device to immediately remove its trusted status. The next login from that browser will require a 2FA code.

Revoking All Devices

Click Revoke All Devices to invalidate every trusted device at once. Use this if you suspect unauthorized access or after logging in from a shared or public computer.

Changing Your Phone Number

If your SMS-registered number changes, update it from the 2FA section without disabling and re-enabling SMS.

  1. Click Change next to your current phone number in the Active Methods list.

  2. Enter your new number and select the country code.

  3. Click Send Verification Code. A code will be sent to the new number.

  4. Enter the code and click Verify & Update Phone.

Note: Changing your phone number will automatically revoke all trusted devices, requiring full 2FA verification on your next login from any browser.

Disabling 2FA

Warning: Disabling 2FA makes your account less secure. We recommend keeping it enabled at all times.

  1. Click Disable 2FA.

  2. If you have both methods active, choose whether to disable App Only, SMS Only, or Both.

  3. Enter your password to confirm.

  4. Click Disable 2FA.

When 2FA is fully disabled, all backup codes and trusted device tokens are invalidated immediately.

Account Recovery

If you are locked out because you have lost access to both your 2FA methods and your backup codes, you can request account recovery from the login screen.

  1. On the 2FA verification prompt, click Lost access to your account? or navigate to the login page and use the recovery link.

  2. Enter your email address and click Send Recovery Email.

  3. Check your inbox for a recovery link — it is valid for 24 hours.

  4. Click the link and confirm to disable 2FA on your account.

Note: For security, recovery emails are only sent if 2FA is enabled for the account. The recovery process disables 2FA completely — you can re-enable it after logging back in.

Leaving an Agency

If you are a member of an agency but not its owner, you can leave at any time directly from the Agency page.

  1. Navigate to Agency in the main navigation.

  2. In the Team Members table, find your own row (marked You).

  3. Click Leave Agency.

  4. Confirm when prompted.

You will immediately lose access to that agency and its workspaces.

Owners Cannot Leave Directly

If you are the agency owner, you must resolve your ownership before leaving:

  • If there are other members: Transfer ownership to another member first, then leave.

  • If you are the sole member: You cannot leave — use the Delete Account flow instead, which will close the agency along with your account.

Deleting Your Account

Deleting your account permanently removes your personal data from DashboardFox. This action cannot be undone.

Prerequisites

Before you can delete your account, you must resolve the following:

Workspaces: All workspaces you own must be deleted or cancelled. You can do this from the Workspaces dashboard. Deleting a workspace also cancels its subscription.

Agency ownership: Any agency you own must be in one of these states:

  • You have transferred ownership to another member, OR

  • You have removed all other members (making yourself the sole member)

If you are a non-owner member of other agencies, you will be removed from them automatically when your account is deleted.

How to Delete Your Account

  1. Go to Settings → Profile.

  2. Scroll to the Delete Account section at the bottom of the page.

  3. Click Delete My Account.

  4. Enter your password to confirm.

  5. Click Confirm Delete.

Your account will be immediately anonymized, all active sessions revoked, and a confirmation email sent to your address. You will be redirected to the login page.

Warning: This action is permanent. Your name, email address, and personal details will be anonymized and cannot be recovered. If you own workspaces with active subscriptions, delete or cancel them first to avoid continued billing.

Security Tips

Use an authenticator app where possible. App-based codes cannot be intercepted the way SMS messages can and work without a mobile signal.

Store backup codes offline. A password manager or printed copy kept in a secure location ensures you always have a way back in.

Revoke trusted devices after using shared computers. If you check "remember this device" on a computer you do not own, revoke it from the Trusted Devices section as soon as possible.

Keep your phone number up to date. An outdated SMS number can lock you out if it is the only 2FA method on your account.

Enable 2FA on your email account too. Your email is used for password resets and account recovery — protecting it is just as important as protecting your DashboardFox login.