ACCOUNT & SECURITY

Securing your account with MFA

Two-factor authentication (MFA) makes your Candor account substantially harder to compromise. It uses an authenticator app on your phone — Authy, 1Password, Google Authenticator, or anything else that supports TOTP. Setup takes about a minute.

Enrolling

Go to Settings → Security and start enrolment. Candor displays a QR code. Open your authenticator app, scan it, and the app will start showing a six-digit code that rotates every 30 seconds.

If you can’t scan (you’re on the same device), click Can’t scan? to reveal the secret as text and paste it into your app manually.

Type the current six-digit code into the verification field and click Verify and enable. That’s it. From now on, every sign-in will ask for a fresh code after your password.

What happens at sign-in

After you log in with your password (or via magic link), if you have MFA enabled Candor takes you to a code-entry screen titled Two-factor authentication. Enter the current code from your authenticator app and you’re in. This promotes your session from AAL1 to AAL2, the assurance level required to use the app.

Step-up: when Candor asks again

For sensitive actions (mostly admin operations like impersonation or suspending an account), Candor asks for a fresh code even mid-session. The screen reads Verify it’s you and the proof lasts five minutes. Enter the code, complete the action, and the gate stays open for that window.

Most users never see this. It’s mainly relevant for platform admins.

When MFA is required

Two cases force you to enrol if you haven’t already:

  • Your workspace requires it. If your workspace owner or admin has turned on the team-wide MFA policy, you’ll see a screen telling you to enrol before you can use the app.
  • You’re a platform admin. MFA is mandatory for platform admin accounts and can’t be removed (you can’t delete your last factor).

Adding or removing a factor

From Settings → Security you can see your enrolled factors. Each has a Remove button. The confirmation dialog warns: removing a factor means losing its protection until you set up a new one. Platform admins can’t remove their last factor (the button is disabled).

Lost access to your authenticator?

If you lose your phone or your authenticator app data, contact a workspace owner or admin to remove your factor on your behalf. They can also re-invite you. Don’t lose your phone and all your owners — that’s the recovery edge case.

Why MFA matters here

Candor stores research data, sometimes including interview transcripts and audience evidence that’s commercially sensitive. A password alone is too weak a single point of failure for that kind of data. MFA gets you to a meaningfully better baseline.

Where to go next

Candor is in development.

Be the first to know when it launches.

No spam. Just a note when Candor is ready. Powered by Highline Beta.