Device Trust & Remember Me

When you log in with MFA enabled, you can choose to trust a device so you are not prompted for MFA on every login. This guide explains how device trust works through the login process.

How Device Trust Works

During the MFA step of login, you can check "Remember this device" (or "Trust this device"). When enabled:

• Your browser stores a secure cookie
• MFA is not required for subsequent logins on that browser
• You still need your password each time
• The trust is tied to your specific browser and cookies

Trusting a Device

1. Log in with your email and password
2. When prompted for your MFA code, check the "Remember this device" box
3. Enter your MFA code and complete login
4. Future logins on this browser will skip the MFA step

When Trust Is Reset

Trust is automatically cleared when:

• Browser cookies are cleared
• You use incognito/private browsing mode
• Your password is changed
• MFA settings are reset
• You sign out and clear your session
• The trust period expires

Security Recommendations

Good to Trust

• Your personal laptop or desktop
• Your personal phone browser
• Your work computer (if allowed by company policy)

Do Not Trust

• Public or shared computers
• Library or cafe computers
• Borrowed devices
• Any device others can access

Revoking Device Trust

To require MFA again on a previously trusted device:

1. Clear browser cookies for Zenovay -- this removes the trust cookie
2. Change your password -- this invalidates all trusted device sessions
3. Reset your MFA -- re-enrolling in MFA clears all existing device trust

Best Practices

1. Personal devices only: Only trust devices you own and control
2. Use strong passwords: Since trusted devices only need your password to log in
3. Clear cookies when selling or lending devices: Prevents unauthorized access
4. Change password if concerned: This is the fastest way to revoke all device trust

Next Steps

• Manage your sessions
• Set up MFA
• Review security best practices