> ## Documentation Index
> Fetch the complete documentation index at: https://docs.agentflow.live/llms.txt
> Use this file to discover all available pages before exploring further.

# Security Best Practices

> Keep your AgentFlow account secure

# Security Best Practices

**Follow these guidelines to maximize security.**

## Account Security

<Steps>
  <Step title="Strong Password">
    * 12+ characters
    * Mix of letters, numbers, symbols
    * Unique to AgentFlow
    * Use password manager
  </Step>

  <Step title="Enable 2FA">
    * Use authenticator app
    * Save backup codes
    * Update if device lost
  </Step>

  <Step title="Review Sessions">
    * Check active sessions regularly
    * Log out unused devices
    * Set session timeout
  </Step>
</Steps>

## Team Security

✅ **Review permissions quarterly**\
✅ **Remove inactive users promptly**\
✅ **Use principle of least privilege**\
✅ **Audit shared conversations**\
✅ **Monitor unusual activity**

## Data Security

**Best practices:**

* Don't share sensitive data in prompts unless necessary
* Review conversation exports before sharing
* Use private conversations for sensitive topics
* Delete unnecessary conversations
* Enable conversation encryption (Enterprise)

## API Security

**If using APIs:**

* Rotate API keys regularly
* Use different keys per environment
* Never commit keys to version control
* Set IP allowlists (Enterprise)
* Monitor API usage

<Card title="Next: Common Issues" href="/support/common-issues">
  Troubleshoot common problems
</Card>