Skip to main content
Truthlocks gives you tools to lock down your account: multi-factor authentication (MFA), password management, and session controls. Access these settings from your dashboard at verify.truthlocks.com/security.

Multi-factor authentication

MFA adds a second verification step when you sign in. Truthlocks supports time-based one-time passwords (TOTP) through any authenticator app such as Google Authenticator, Authy, or 1Password.

Enable MFA

1

Open security settings

Navigate to Security in your account sidebar, then click Enable MFA.
2

Scan the QR code

Open your authenticator app and scan the QR code displayed on screen. If you cannot scan the code, copy the setup key manually.
3

Enter verification code

Type the 6-digit code from your authenticator app and click Verify & Enable. MFA is now active on your account.
Store your authenticator setup key in a safe place. If you lose access to your authenticator app, you will need to contact support to regain access to your account.

Disable MFA

To turn off MFA, go to Security, click Disable MFA, and enter a valid 6-digit code from your authenticator app to confirm.

Password management

Change your password from the Security page. Passwords must be at least 10 characters.
1

Enter your current password

Type your existing password to verify your identity.
2

Set a new password

Enter and confirm a new password (minimum 10 characters).
3

Save

Click Change Password. You remain signed in on your current session.
Use a password manager to generate a strong, unique password for your Truthlocks account.

Forgot your password

If you cannot remember your password, reset it from the sign-in page:
1

Click Forgot Password

On the sign-in page, click the Forgot Password link below the password field.
2

Enter your email

Type the email address associated with your account and click Send Reset Link.
3

Check your inbox

Open the password reset email and click the reset link. The link expires after a limited time.
4

Set a new password

Enter and confirm a new password (minimum 10 characters), then click Reset Password. You are redirected to the sign-in page.
For security, the confirmation message is always shown regardless of whether the email address is registered. This prevents account enumeration.

Session management

The Security page lists all active sessions on your account, including the device, browser, and last-active time for each.
  • Review sessions: Check for any sessions you do not recognize.
  • Sign out other sessions: Click Sign Out Other Sessions to revoke all sessions except the one you are currently using. This is useful if you suspect unauthorized access.
Signing out other sessions does not change your password. If you believe your account is compromised, change your password and enable MFA.

Enable MFA

Protect your account with a second factor. TOTP-based MFA blocks unauthorized sign-ins even if your password is exposed.

Use a strong password

Choose a password that is at least 10 characters and unique to Truthlocks. Avoid reusing passwords from other services.

Review sessions regularly

Check your active sessions periodically and revoke any you do not recognize.

Keep your email secure

Your email is used for password resets. Make sure it also has MFA enabled.

Next steps

Privacy center

Export your data or request account deletion.

Content protection

Learn how to protect your content with cryptographic attestations.