How to Keep Your Mailzzy Account Secure

Your Mailzzy account holds your contact lists, campaign data, and billing information. Keeping it secure is not just good practice — it is essential. This guide covers the most effective steps you can take to protect your account from unauthorized access.

1. Use a Strong, Unique Password

The single most common way accounts are compromised is through weak or reused passwords. If you use the same password across multiple platforms, a breach on any one of those platforms can expose your Mailzzy account.

A strong Mailzzy password should be:

• At least 8 characters long

• A combination of uppercase letters, lowercase letters, numbers, and symbols

• Different from any password you use on other websites or services

2. Enable Two-Factor Authentication (2FA)

Two-factor authentication adds a second verification step to your login process. Even if someone obtains your password, they cannot access your account without also completing the second factor.

Mailzzy supports 2FA through an authenticator app. When enabled, you will be prompted to enter a time-sensitive code from the app each time you log in. See Set Up Two-Factor Authentication (2FA) for step-by-step setup instructions.

3. Set Up Passkeys

Passkeys are a modern, phishing-resistant alternative to passwords. Instead of entering a password, your device authenticates you using biometrics (such as Face ID or fingerprint) or a PIN. Passkeys cannot be stolen through phishing because they are tied to your specific device and the specific website they were created for.

Setting up a passkey is the most secure login method currently supported by Mailzzy. See Set Up Passkeys for Your Account for setup instructions.

4. Never Share Your Login Credentials

Your Mailzzy login details are personal to you. Never share your password with colleagues, clients, or third-party agencies. If other people need access to your Mailzzy account, use the team members feature to grant them their own access under a separate login. This way you can revoke access at any time without changing your own password.

5. Only Log In on Trusted Devices and Networks

Avoid logging in to Mailzzy on shared computers, public-access devices, or unfamiliar networks where your credentials could be intercepted or saved without your knowledge. If you do use a shared device, always log out fully when you are finished.

6. Recognize Phishing Attempts

Phishing emails try to trick you into giving up your login credentials by posing as Mailzzy or another trusted service. Be cautious of:

• Emails that ask you to click a link and log in, especially if you did not request a password reset or any account action

• Emails with urgent language designed to pressure you into acting without thinking ("Your account will be closed in 24 hours")

• Links that look similar to Mailzzy's domain but contain slight differences — for example, "mailzzy-support.com" is not a Mailzzy address

Mailzzy will never ask for your password via email. If you receive a suspicious email claiming to be from Mailzzy, do not click any links. Forward it to support@mailzzy.com so the team can investigate.

7. Review Active Team Members Periodically

If other people have access to your Mailzzy account through the team members feature, review the list periodically. Remove anyone who no longer needs access — for example, former employees or contractors whose projects have ended.