Account security
Connecting your computer or mobile device to a network includes a degree of risk. No matter the size of your business, criminals might target you and your information.
Phishing, vishing, or smishingattacks have the goal of obtaining your information and login credentials. These types of attacks can appear legitimate and from reputable sources. Be cautious when clicking suspicious links or downloading attachments from emails, SMS messages, or websites. When speaking over the phone, be cautious giving sensitive information, especially if they called you. Shopify Support will request submission of sensitive documents only through a secure upload page that starts withapp.shopify.com
or.shopify.com
.
For optimal account security, the store owner shouldn't share their login credentials with anyone, including their staff. A store owner's credentials should be kept secure and confidential at all times. This is the responsibility of the user which is stated in theTerms Of Service, Section 1.5.. Each user accessing the store should have a uniquestaff accountwith specific permissions.
If you believe someone has accessed your account without your permission, thentake steps to secure your dataimmediately.
Security features, like万能钥匙andtwo-step authentication, add an additional layer of security to make it more difficult for an unauthorized person to access your account. This extra layer of security can reduce the likelihood of account takeovers that can result in data breaches and financial losses.