Security and sign-in
Open Settings → Profile → Security to manage the sign-in methods and active sessions associated with your personal account.
Manage the password
If the account already has a password, select Change password and provide the current password before setting a new one. If the account was created through a connected sign-in method, the page offers Set password so email-and-password access can be added.
New passwords are checked by the dashboard's strength assessment. Use a long, unique value that does not contain predictable personal information and is not reused for another service.
Review active sessions
Active sessions lists the devices and browsers currently signed in. The current session is identified separately.
Revoke an individual session when a device is no longer trusted, or select Sign out other devices to end every session except the one in use. Session revocation should be the first response to a lost device, unfamiliar login, or suspected account access.
Manage connected accounts
Google and Apple can be connected as sign-in methods. The Security page shows their verification status and associated email.
A connected account can be removed when another valid sign-in method remains. If it is the only verified method and no password exists, removal is blocked until another method is configured, preventing an accidental lockout.
The dashboard does not currently provide a separate two-factor authentication setting. Protect the email, Google, and Apple accounts used for sign-in with their own multi-factor controls. Certain high-risk operations, including payout onboarding submissions, still require strict account re-verification.
Delete the account
Account deletion permanently removes the user profile and sessions and cannot be undone. The dashboard enables deletion only when the account belongs to exactly one organisation, that organisation has no live, scheduled, or draft events, all refund procedures are resolved, and no payout balance remains. The current user must also have the required organisation access.
If activity appears suspicious, revoke other sessions, change the password, review connected accounts, and ask an organisation Admin to review Settings → Organisation → Members. Open a support request from the signed-in dashboard if further investigation is required.

