Security and two-factor authentication

What is the Security tab

The Security tab in Settings is where you manage account protection settings and review access-related information. It provides tools to add extra layers of security to your account and visibility into who currently has active access.

This tab is especially important for business users who may have employees or multiple people connected to their account for features such as CRM access or other operational areas of the workspace.

To access the Security tab, navigate to Settings → Security, or go directly to:

https://panel.interlinked-ai.com/en/settings?tab=security

Two-factor authentication (2FA)

Two-factor authentication adds a second verification step beyond your password when you sign in to Interlinked AI. Even if someone obtains your password, they cannot access your account without also having access to your authenticator app.

Why you should enable 2FA

Your Interlinked AI account is connected to your business operations — it may contain customer conversations, order history, lead information, payment method details, and other sensitive business data. Enabling 2FA significantly reduces the risk of unauthorized access.

Consider enabling 2FA if:

• Your account manages customer-facing AI conversations on Instagram, Facebook, or WhatsApp
• You have billing and payment methods stored in your account
• Multiple people have knowledge of or access to your account credentials
• You want to follow security best practices for any business-critical SaaS platform

How to enable 2FA

To enable two-factor authentication:

1. Navigate to Settings → Security at https://panel.interlinked-ai.com/en/settings?tab=security
2. Locate the Two-factor authentication section
3. Toggle the 2FA switch to enabled
4. Follow the on-screen instructions to connect your authenticator app
5. Scan the QR code with your authenticator app (such as Google Authenticator, Authy, or Microsoft Authenticator)
6. Enter the verification code generated by your app to confirm setup

Once enabled, each time you sign in to Interlinked AI you will be asked to enter a verification code from your authenticator app after entering your password.

Supported authenticator apps

Interlinked AI supports any authenticator app that follows the standard TOTP (Time-based One-Time Password) protocol. Popular options include:

• Google Authenticator (iOS, Android)
• Authy (iOS, Android, desktop)
• Microsoft Authenticator (iOS, Android)
• 1Password (iOS, Android, desktop, browser extensions)

Any TOTP-compatible app will work. Choose one that fits your workflow and device preferences.

Disabling 2FA

If you need to disable two-factor authentication:

1. Go to Settings → Security
2. Toggle the 2FA switch to disabled
3. You may be asked to confirm with a verification code from your authenticator app

Active Sessions

The Active Sessions section of the Security tab shows the profiles or users currently associated with active access to your account.

What Active Sessions displays

This section provides visibility into:

• Currently logged-in sessions — Which devices or browsers are actively connected to your account
• Employee access — If your workspace includes access for team members (for example, CRM operators or customer support agents), their active sessions appear here
• Session details — Information about each active connection, helping you identify recognized and unrecognized access

Why Active Sessions matters

The Active Sessions area is a key control point for account protection and access visibility. It helps you:

• Detect unauthorized access — If you see an active session you do not recognize, it could indicate that someone else has gained access to your account
• Monitor employee activity — For businesses with multiple users, you can see which team members are currently active in the workspace
• Manage account hygiene — Identify old or unused sessions that should be terminated

Platform security and trust

Because the Settings area handles billing, account identity, and access management, it is important to understand the broader security practices Interlinked AI follows to protect your data.

Payment security

All billing, credit card handling, invoices, and payment processing are secured through Stripe. Interlinked AI does not store full credit card details. Your payment information is transmitted directly to and managed by Stripe’s PCI-compliant infrastructure.

API and integration security

Interlinked AI uses official provider APIs where relevant, including trusted platforms such as:

• Meta — For Instagram, Facebook, and WhatsApp messaging integrations
• Google — For Google Calendar synchronization and Google sign-in

Using official APIs ensures that your account connections follow each provider’s authentication and security standards.

Data protection practices

Interlinked AI is designed to protect account, business, and customer data through:

• Encryption — Sensitive information is protected using encryption both in transit and at rest
• Secure data handling — Platform-level validation, access controls, and responsible data handling practices help safeguard your information
• Customer data protection — Customer data is not sold. User information is handled responsibly to support the operation of the service and its connected features
• Access controls — Account-level protections such as 2FA and session management help reduce the risk of unauthorized access

What Interlinked AI does not do

To set clear expectations:

• Your data is not sold — Interlinked AI does not sell customer data, user information, or business data to third parties
• Information is not casually shared — User data is handled responsibly and used only to support the operation of the service and its connected features
• Billing data is not stored locally — Full credit card details are never stored on Interlinked AI servers

What to do next

• Manage your login credentials — Understand how password management works depending on your sign-in method. See Manage sign-in and password.
• Review your account details — Check the personal and business information on file. See Account information.
• Control your notifications — Choose which security alerts and notifications you receive. See Notification preferences.
• Understand destructive actions — Know what happens when you delete your account or disconnect Google. See Delete or disconnect your account.