What are backup codes?

Backup codes are one-time emergency login codes for when your normal MFA method is unavailable.

Where should I store backup codes?

Store them in a password manager secure note or print them and keep them somewhere private. Do not keep them in your email inbox or photos.

Can backup codes be reused?

Usually no. Most backup codes work once, so generate a new set after using one.

Backup Codes Guide | Avoid Getting Locked Out After MFA

🔒 Privacy Policy

Last updated: January 2025. SecurityAnalysts.org is a free community service. We take your privacy seriously — especially on a security site.

What we collect

If you accept cookies, we use Google Analytics to collect anonymous usage data (pages visited, time on site, country). IP addresses are anonymised. We collect no names, emails, or personal details from analytics.

If you submit the contact form or a site suggestion, we receive the information you type. This is stored securely via Formspree and used only to respond to you.

What we never do

We never ask for your passwords
We never sell your data to third parties
We never use your data for advertising profiling
We never store payment details (support payments are handled securely by Ko-fi)

Cookies

We use one category of cookies: analytics cookies (Google Analytics), only if you consent. These are used to understand how many people visit and which guides are most helpful. You can withdraw consent at any time by clicking "Decline" below.

We also use a sessionStorage item (not a cookie) to remember language preferences and consent state within your visit.

Advertising

This site displays adverts served by Google AdSense. Google may use cookies to serve ads based on your prior visits to this and other websites. You can opt out via Google's Ad Settings.

Your rights (GDPR)

If you are in the EU/EEA, you have the right to access, correct, or delete any personal data we hold about you. Contact us at privacy@securityanalysts.org for any data requests.

Contact

Questions about this policy: privacy@securityanalysts.org

MFA safety net

Backup codes stop you getting locked out

When you turn on MFA, many services give you backup codes. These are one-time emergency codes you can use if your phone is lost, broken, stolen, or replaced.

Where to store them

Inside your password manager as a secure note.
Printed and kept somewhere private at home.
Not in your email inbox or camera roll.

When to use them

Use a backup code only when your normal MFA method is unavailable. Each code usually works once, so generate a fresh set after using one.

Save backup codes when enabling MFA.

Label which account they belong to.

Do not share them with anyone.

Refresh codes if you think they were exposed.