Help Centre

Click "Forgot password" on the login page. Enter your registered email and we'll send a reset link valid for 1 hour.

Go to your Profile → Security tab and click "Enable 2FA". Scan the QR code with Google Authenticator (or any TOTP app) and confirm with the 6-digit code.

Use one of the 8 recovery codes you saved when you first set up 2FA. Enter it in the 2FA verification box exactly as shown. Each code can only be used once.

Go to Profile → Account tab. Enter your new email and current password to confirm the change.

Go to Profile → Security tab and click "Disable 2FA". You'll need to confirm with your current password.

Your session lasts 8 hours from the time you log in. After that you'll be asked to log in again.

Passwords are hashed with bcrypt and never stored in plain text. Sessions use signed JWT tokens stored in httpOnly cookies. All connections are encrypted via HTTPS.