Account Recovery

How to regain access to your account when you're locked out.

Recovery Options

There are three ways to recover access, depending on your situation:

1. Recovery Codes (Self-Service)

When you enabled 2FA, you received 8 single-use recovery codes. If you've lost your authenticator app or can't access your email:

  1. On the 2FA verification screen, click "Use a recovery code"
  2. Enter one of your saved xxxx-xxxx recovery codes
  3. You'll be logged in immediately
  4. Go to Settings → Two-Factor Authentication to reconfigure or regenerate codes
Running low on recovery codes? After logging in, regenerate a new set of 8 codes in Settings. This invalidates all previous unused codes.

2. Owner Reset (Team Members)

If you're a team member and you've lost both your authenticator and all recovery codes, ask your account Owner to reset your 2FA:

  1. Contact your account Owner (by phone, Slack, etc.)
  2. The Owner goes to Settings → Team
  3. They click Reset 2FA next to your name
  4. Your 2FA is cleared — you can now log in with just your password
  5. If the organization requires 2FA, you'll be prompted to set it up again immediately

3. Support Recovery (Account Owners)

If you're the only Owner on the account and you've lost access to your authenticator and all recovery codes:

  1. Email support@blendo.com from your account email address
  2. We'll verify your identity using your billing details and account information
  3. Our team will manually reset your 2FA
  4. You'll be able to log in and reconfigure 2FA
This process is intentionally manual and slow (typically 1-2 business days). It's the security tradeoff for the "break glass" recovery path. To avoid needing it: save your recovery codes in a password manager.

Preventing Lockouts

  • Save recovery codes in a password manager — 1Password, Bitwarden, or LastPass all support secure notes
  • Have more than one Owner — if you're locked out, the other Owner can reset your 2FA
  • Use email-based 2FA — if you lose your phone, email codes still work from any device
  • Regenerate codes periodically — especially after using some of your recovery codes

Forgot Password

If you've forgotten your password but can still access your email, use the password reset flow on the login page. This is separate from 2FA — resetting your password does not bypass 2FA.