Security & Compliance
Two-factor authentication (2FA)
Add an extra sign-in check for users who access your QwryAI workspace.
Documentation Index
Fetch the complete documentation index at: /llms.txt
Use this file to discover all available QwryAI pages before exploring further.
Two-factor authentication adds another verification step during sign-in. Use it for admins, billing owners, and support agents who can access customer conversations.
- Require 2FA for privileged users.
- Keep recovery codes in a secure place if they are provided.
Recommended Policy
- Enable 2FA for workspace admins.
- Require strong passwords.
- Remove users who no longer need access.
- Rotate exposed credentials immediately.
- Review developer API keys regularly.
| Account type | Recommended protection |
|---|---|
| Workspace owner | 2FA required, recovery codes stored securely, billing access reviewed. |
| Admin | 2FA required and access reviewed after role changes. |
| Support agent | 2FA strongly recommended because conversations can contain customer data. |
| Developer access | API keys rotated regularly and removed when unused. |