Passkeys
Passkeys provide the strongest account protection available on Torki. Passkeys let you authenticate with your device's biometric sensor (fingerprint or face recognition) or PIN. Passkeys are phishing-resistant because they are bound to the specific website domain and cannot be intercepted or reused by attackers.
Two-Factor Authentication
Enable two-factor authentication using any authenticator app. After entering your password, you will be prompted for a 6-digit time-based code from your app. This ensures that even if someone obtains your password, they cannot access your account without your authenticator device. When you enable 2FA, you receive 8 one-time recovery codes as a backup.
Email OTP Verification
Critical account actions require email verification through one-time passcodes. Changing your email, deleting your account, and other sensitive operations send a verification code to your registered email address. This prevents unauthorized changes even if someone gains access to your active session.
Session Management
Torki tracks your active sessions across devices. You can review your sessions from Settings to see where your account is signed in. If you notice unfamiliar sessions, you can revoke them to sign out of those devices.
Security Email Alerts
Torki sends email notifications for security-relevant events, including new sign-ins from unrecognized devices, password changes, and changes to your security settings. These alerts help you detect unauthorized access quickly so you can take action.