Why do we use OTP codes and Two-Factor Authentication (2FA)?

To keep your Monflo account secure, we use OTP codes and Two-Factor Authentication (2FA) during onboarding and login.

OTP Codes (One-Time Passwords)

During onboarding, we ask for your email address and mobile phone number. To verify that these details are truly yours, we send a 6-digit OTP code to both.

- You’ll be asked to enter these codes on the second screen of the onboarding process.

- Only enter the codes, not your email or phone number again.

- Check your spam or junk folders if you don’t see the OTP emails or SMS.

OTP codes are:

- Single-use (each code can only be used once)

- Temporary (they expire shortly after being sent)

- Secure (they help prevent unauthorized access)

Two-Factor Authentication (2FA)

2FA adds an extra layer of protection by requiring a unique 6-digit code generated by an authenticator app on your phone (e.g., Google Authenticator or Microsoft Authenticator).

How it works:

- During onboarding (Step 3), you’ll scan a QR code using your authenticator app.

- This adds a Monflo token to the app, which generates a new code every 30 seconds.

- When logging in, you’ll enter this code after your username and password.

Using 2FA with Monflo:

- Open your authenticator app.

- Find the entry labeled Monflo.

- Enter the current 6-digit code when prompted.

Can’t find the app? 

Search your phone for “Authenticator.” If you still can’t locate it or accidentally deleted it, please contact Monflo Support for help.