It starts with the obvious: look at your password. If you di not have a hardened password, change your password now.
A hardened password should look like this: Ceu3#jXgj2y#aL%X
It should have:
- Uppercase
- Lower Case
- Numbers
- Symbols
It should also be nearly impossible to remember. That is why you should keep it secure in a password protection program, like LastPass. (By the way, LastPass generated that password used as an example – and I always use at least 16 characters since I do not need to remember it – LastPass will do that for me.)
No one but you should have the password. Make sure Intuit has your phone number so it can send you an authentication code should you ever need to recover a password.
Don’t share login accounts
If you are allowing anyone else to login in to your account, or share accounts, that is a sign you are not handling security of QuickBooks Online correctly.
Every legitimate user should have their own account to access your QuickBooks Online company.
Review and Set User Roles
If there are multiple people in your organization accessing your QuickBooks Online account, check the User Roles. you find them by select Settings ⚙, then choosing Manage users.
Look to see if anyone has Company Admin access. If they do, they can access all parts of QuickBooks Online. Most users should have Standard User status,
Some users do not need any special access to QuickBooks Online. For example, a Time Tracking Only user (such as a subcontractor) does not need any special access to the QuickBooks Online company account.
