Account security
Connecting your computer or mobile device to a network includes a degree of risk. No matter the size of your business, criminals might target you and your information.
Phishing, vishing, or smishingattacks have the goal of obtaining your information and login credentials. These types of attacks can appear legitimate and from reputable sources. Be cautious clicking on suspicious links, downloading attachments in emails, SMS or websites, or giving sensitive information over the phone. Shopify Support will request submission of sensitive documents only through a secure upload page that starts withapp.shopify.comor.shopify.com.
For optimal account security, the store owner shouldn't share their login credentials with anyone, including their staff. A store owner's credentials should be kept secure and confidential at all times. This is the repsonsibility of the user which is stated in theTerms Of Service, Section 1.5.. Each user accessing the store should have a uniquestaff accountwith specific permissions.
If you believe someone has accessed your account without your permission, thentake steps to secure your dataimmediately.
Security features, liketwo-step authentication, add an additional layer of security to make it more difficult for an unauthorized person to access your account. This extra layer of security can reduce the likelihood of account takeovers that can result in data breaches and financial losses.