XM Knowledge Base
Company News
Qualtrics strengthens security with mandatory two-factor authentication
At Qualtrics, we understand the profound responsibility of maintaining the highest levels of security to protect our customers’ data. The trust thousands of organizations place in Qualtrics to secure sensitive information is the foundation of our commitment to them, and why security is embedded in our design, philosophy, and daily operations.
Security at Qualtrics is a continually evolving discipline, and we are always looking for new ways to enhance our security posture and meet the changing needs of organizations. As proof of this commitment, we will soon require mandatory two-factor authentication (2FA) for accessing the Qualtrics Platform. 2FA is a security approach found to prevent 99.9% of attacks on accounts.
Mandatory 2FA will be implemented in a phased approach from December 2024, beginning with all new Qualtrics customers from this date. Users will be notified in advance of the required changes and provided with instructions on how to set up 2FA. Organizations can even get ahead and start today by switching on 2FA now by following these instructions.
What is 2FA and how will it help?
Two-Factor Authentication is an added layer of security for the Qualtrics® platform that in addition to a username and password requires something only the user has on them—typically, a temporary code sent to an email or an authenticator app, such as Google Authenticator, Duo Mobile, and Authy. This means that even if someone manages to get hold of a password, they won’t be able to access the account without that second factor.
The benefits of 2FA are extensive:
- Enhances security against unauthorized access to instill peace of mind
- Protects against human error or ease related to weak passwords and password reuse
- Helps with regulatory standards and offers protection against legal ramifications - including compliance with the Payment Card Industry Data Security Standards, Health Insurance Portability and Accountability Act, and the EU’s General Data Protection Regulation
- Mitigates potential financial and reputations costs associated with unauthorized access to accounts
An ongoing commitment to security
Security is ingrained in our culture and ethos at Qualtrics, and as further proof of this - in addition to mandatory 2FA - we recently launched the Qualtrics Trust Center.
The Trust Center is a one-stop shop for all security-related needs and questions, with all notifications, certifications, documentation, and answers to common questions found on the site.
Mandatory 2FA and the Trust Center are just two of the recent examples of Qualtrics’ ongoing commitment to customers and ensuring organizations have peace of mind when entrusting Qualtrics with their data. To learn more click here.