# Account security best practices Your DataImpulse account - including its balance, billing details, and proxy credentials - is protected by the password and 2FA method you choose. Keeping them safe is your responsibility. **Password hygiene** * Use a **strong, unique password** for DataImpulse: at least 8 characters with a mix of letters, numbers, and symbols. Don't reuse passwords from other services. * Use a **password manager** (1Password, Bitwarden, LastPass, or similar) to store and generate credentials safely. * **Never share your password**. **Two-factor authentication** * Enable **2FA** . See [Two-Factor Authentication (2FA)](/dashboard/2fa.md) for setup steps. * Prefer an **authenticator app (TOTP)** over email-based codes - email is more vulnerable if your inbox is compromised. * **Never share 2FA codes** with anyone, including DataImpulse support. * If you change your phone or email address, update your 2FA settings **before** losing access to the previous method. **Protect the email on your account** If your inbox is compromised, an attacker can intercept password resets and email-based 2FA codes. Enable 2FA on the email provider itself, and watch for any unrecognized sign-in alerts. **Watch out for phishing** {% hint style="warning" %} DataImpulse support will **never** ask for your password, full payment card number, or 2FA codes. If anyone asks for these - even someone claiming to be from DataImpulse - it's a phishing attempt. Forward suspicious messages to . {% endhint %} **What to do if you suspect a breach** If you notice unrecognized sign-ins, unexpected password changes, or unfamiliar payment activity, contact immediately. **Your responsibility** The password and 2FA method you choose are the front line of your account's security. We protect our infrastructure but a weak, reused, or shared password is something we can't compensate for from our side. If unauthorized access results from credentials that were guessed, leaked, or handed to someone else, we may not be able to recover the account or reverse the damage. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.dataimpulse.com/dashboard/account-security-best-practices.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.