What is MFA and why does Bolt use it?
Multi-Factor Authentication (MFA) adds an extra layer of protection to your account. Instead of just entering a password, you’ll also confirm your identity with a second verification method (like a one-time code). This makes it much harder for fraudsters to access your account, even if they get hold of your password.
Why do I need MFA?
Fraudsters sometimes impersonate support staff or use phishing scams to trick people into sharing sensitive details like One-Time Passwords (OTPs). MFA protects you from these threats by requiring an extra verification step before allowing access.
For Bolt Business users, MFA is especially important because it safeguards payments and business operations.
How do I set up MFA?
- Go to Account → Login & Security in the Bolt app.
- Turn On → Two Step Verification
- Verify your email
- Choose a verification method:
- Verified email (receive one-time codes)
- Authentication via Google, Apple, or Facebook
- Once enabled, you’ll need MFA each time you log in with your phone number
What other security measures does Bolt use?
- Passkeys: A passwordless login option with strong industry security standards.
- Login alerts: You’ll receive an email when a new device logs into your account.
- Change restrictions: Profile-critical changes are blocked for 48 hours after a new device login.
Do I have to enable MFA?
In some high-risk regions, or if you use Bolt Business payments, MFA may be required automatically. If you don’t have a verified method, you’ll be prompted to set one up to continue using these features.
