# Security Best Practices To keep your MediaMath account secure, we follow the [best practices](https://auth0.com/blog/dont-pass-on-the-new-nist-password-guidelines/) established by National Institute of Standards and Technology (NIST). Security is a partnership, and as a customer we need to do everything we can to ensure your account remains secure. If you have any questions regarding your account security, please contact [MediaMath Support](https://support.infillion.com/s/submit-a-case) ## Use a Password Manager Our password policy requires a level of complexity that is best managed by a Password Manager. The only secure password is [one you can't remember.](https://www.troyhunt.com/only-secure-password-is-one-you-cant/) We recommend reading the [Wirecutter's guide to password managers](https://thewirecutter.com/reviews/best-password-managers/) to find a solution that works well for your needs. As of November 2024 the wirecutter recommended password manager is [1Password](https://1password.com) Do not share accounts. If you require more employees to have access to MediaMath, contact us and we can configure your environment to accommodate your use case. ## Enable Multi Factor Authentication We highly recommend enabling Multi Factor Authentication on your account. MediaMath supports both SMS and TOTP (Timed-based One Time Password) authentication. We *strongly* recommend TOTP authentication, as phone numbers can, and have been redirected to re-route authentication codes. TOTP authentication allows your device to generate a number that only you have, safeguarding access to your account. You will require an app for your phone. We recommend any of apps: - [1Password](https://support.1password.com/one-time-passwords/) - [Google Authenticator](https://support.google.com/accounts/answer/1066447?co=GENIE.Platform%3DAndroid&hl=en) - [Authy](https://authy.com/download/) ## Vulnerabilities If you believe you have identified a vulnerability in the MediaMath platform please contact [security@mediamath.com](mailto:security@mediamath.com).