Over the past few months, Cloudbeds has made it our mission to strengthen your account security in order to safeguard your data and that of your customers. The Zephyr update\u00a0includes a number of tighter security features to keep your information safe.\r\n\r\nGeneral security updates\r\n\r\nAll credit card details will be removed 30 days after a cancellation or no-show\r\nThere is now a 30-day grace period for charging guests fees for cancellations or no-shows. After this time period, the guests\u2019 credit card details will be removed.\r\n\r\nNew auto log out settings\r\nProperty owners can now automatically log out staff members after a specified amount of time of inactivity on the platform.\r\n\r\nPassword reset link to expire after 15 minutes\r\nThe link sent to a user when an account or credit card password reset is requested will expire after 15 minutes.\r\n\r\n\r\n\r\nTwo-Factor Authentication (2FA)\r\n\r\n2FA required for managerial override to view credit card details\r\nManagers must enter their viewing credentials when a staff member doesn\u2019t have permission to view credit card details. To ensure these credit card details are only viewed on a trusted computer, we will now require that the manager also enters a 2FA verification code. This will make the device trusted for 30 days.\r\n\r\nUse of emergency code at\u00a0login\u00a0will require re-verification\r\nWhen a user logs in with their emergency code, we will redirect the user to their profile to verify their new phone number or device, or to re-verify their old one.\r\n\r\nButton to generate new 2FA emergency code\r\nIf a user forgets to write down their emergency code or otherwise loses it, we\u2019ve added a button to the User Profile that generates a new emergency code. \r\n\r\nRead more about our security updates here.