SmartFi is dedicated to securing your account and your financial assets, but we need your help. Social engineering is the most common way that accounts are breached and assets are lost, so we have compiled a list of best security practices to help you help us to keep your money safe.
Passwords:
- Use a strong password that has no personal connection to you and that cannot be easily guessed
- Use a password management system or application that is secure
- Change your passwords regularly
- NEVER reuse passwords from other sites
Two-Factor Authentication (2FA):
- Enable 2FA on your account immediately. SmartFi supports all of the most popular 2FA applications
- Write down your 2FA backup codes. SmartFi will not reset your 2FA without being able to verify your identity, so your best and most secure option for restoring access to 2FA if you lose your mobile device are your 2FA backup codes
General Security:
- Complete Account Verification (KYC) on your SmartFi account immediately. Account verification gives SmartFi a way to double check your identity before we take any action that involves account access, such as resetting 2FA or helping to reset passwords.
- Never share your SmartFi login credentials with anyone
- Immediately change your password if you believe someone else may have gotten your login information
- Request that SmartFi Customer Empowerment lock your account if you believe someone else has accessed it
- Use a different email than you use for social accounts
- Secure your email account with a strong password and 2FA
- Ensure that your mobile device and accounts for cloud storage are secured with strong passwords and 2FA logins
- Be on the lookout for phishing emails and social posts. Posts or emails that ask you personal questions, no matter how innocent they seem, are ways to learn things about you (such as your birthdate or places you have lived) that are often part of passwords created by users or security questions on platforms used in account recovery. SmartFi will never ask you for your password and will never offer to complete transactions on your behalf.
- Check regularly to see if your email or accounts have been breached. You can check here to see if your email address or personal information was involved in a data breach.