Managing Active Sessions and Logins

You can see all devices and browsers that are currently logged into your AskBiz account at any time:

1. Go to Account Settings → Security → Active Sessions

2. Each session shows: device type, approximate location, browser, and last active time

If you see a session you do not recognise — especially from a different country or device — treat it as a potential security incident.

To log out of a specific device or browser:

1. In the Active Sessions list, find the session you want to end

2. Click Revoke next to it

3. That session is immediately invalidated — the device will be redirected to the login page

To revoke all sessions at once (e.g. if you suspect a breach): click Revoke All Other Sessions. This logs out every device except the one you're currently using.

If you see a session you don't recognise, or suspect your account has been accessed without your knowledge:

1. Revoke all other sessions immediately

2. Change your password (Account Settings → Security → Change Password)

3. Enable or re-enable 2FA if it was not already on

4. Check your connected integrations — verify no new data sources were added

5. Check your team — verify no new team members were invited

6. Contact support@askbiz.co to report the incident — we can run an access audit and confirm what activity occurred

Act quickly — the sooner you revoke access and change credentials, the smaller the window for damage.

For security, AskBiz automatically expires sessions after:

• 30 days of inactivity on web browsers (regardless of trusted device settings)
• 90 days of inactivity on the mobile app
• Immediately when you change your password

On the Business plan, admins can configure a shorter session timeout under Settings → Team → Security Policy (options: 24 hours, 7 days, 30 days).