At Sendsteps, we prioritize the security of your account and the integrity of your data. As part of our commitment to providing the highest level of security, we are implementing a new login method that will take effect on 1 November 2024. From this date forward, you will only be able to log in using a one-time code sent directly to your email inbox. Traditional password login will no longer be necessary or supported.

Why the Change?

The shift to one-time code authentication is designed to bolster security by ensuring that only the person with access to your email inbox can log in to your Sendsteps account. This method significantly reduces the risk of unauthorized access and aligns with the latest security guidelines and best practices. As an ISO27001 certified and GDPR compliant organization, we are dedicated to maintaining the highest standards of data protection and security.

How It Works

1. Receive a One-Time Code: When you attempt to log in, a unique one-time code will be sent to your registered email address.
2. Enter the Code: Simply enter the received code on the login page to access your account.
3. Stay Logged In: Once logged in, you will remain logged in until you choose to log out manually. If your company has additional security protocols in place, such as automatic logout, these will also apply.

Benefits of One-Time Code Authentication

• Enhanced Security: By eliminating the need for a password, we remove the possibility of password-related security breaches.
• User Convenience: There’s no need to remember complex passwords or change them regularly. Access is as simple as checking your email.
• Compliance with Security Standards: This method aligns with current security standards and best practices, ensuring that Sendsteps remains a secure platform for all users. Our commitment to ISO27001 certification and GDPR compliance guarantees that we follow rigorous data protection and security protocols.

Increased GDPR Compliance

The introduction of one-time code authentication further enhances our GDPR compliance by ensuring that personal data is better protected. This method reduces the risk of password-related data breaches, which can lead to unauthorized access to personal information. By tying access to a single-use code sent to your verified email address, we ensure that only the intended recipient can access the account, thus minimizing the risk of unauthorized data access and enhancing the protection of personal data in accordance with GDPR requirements.

Improved ISO27001 Compliance

The new one-time code authentication also better aligns with ISO27001 standards, which focus on information security management. ISO27001 emphasizes the need for robust access control measures and the protection of information assets against unauthorized access. By implementing one-time codes, we enhance our access control mechanisms, ensuring that only authorized individuals can access sensitive information. This method supports several key aspects of ISO27001, including:

• Access Control: Enhancing the control over who can access specific information and resources.
• Information Security: Providing stronger protection against unauthorized access and potential breaches.
• User Authentication: Ensuring that users are properly authenticated before granting access to systems and data.

Single Sign-On (SSO) Integration

For companies using Single Sign-On (SSO), the transition will be seamless. If your organization has integrated SSO with Sendsteps, you can continue to log in using your company’s email and password credentials. The one-time code will not be required for SSO users.

Preparing for the Change

To ensure a smooth transition, please take the following steps before 1 September 2024:

• Verify Email Access: Ensure you have access to the email inbox associated with your Sendsteps account. Without access to this inbox, you will be unable to receive the one-time code and, consequently, unable to log in.
• Enable SSO: If your company uses SSO, make sure it is activated so that all users can log in with their company email and password credentials.

Transitional Period

Until 1 September 2024, you can still log in using your current password. After this date, password login will be completely disabled in favor of the more secure one-time code method. We urge you to prepare accordingly to avoid any disruptions in access.

Conclusion

We are confident that this new login method will provide a more secure and streamlined experience for all our users. Thank you for your understanding and cooperation as we implement these important security enhancements. As an ISO27001 certified and GDPR compliant service, we take your security seriously and strive to adhere to the highest standards.

For any questions or further assistance, please contact our support team.

Stay secure with Sendsteps!