Keep your MYOB account and data secure
Privacy Policy
Our privacy policies set out information on how we collect, hold, use, and disclose personal information. Please refer to MYOB Group Privacy Policy for more details.
Protect yourself against phishing
Tips and recommendations to help you recognise and avoid phishing attacks.
Report a security concern
If you receive a suspicious email or notice unexpected activity on your MYOB file contact us immediately.
Please provide our team with details of the suspicious activity, we will investigate your concern and take action.
Protect your account with 2FA and passkeys
About two-factor authentication (2FA)
Learn how 2FA protects your business, and start getting set up.
Keep your account safe with passkeys
Passkeys protect your MYOB account from stolen passwords and fake sign-in pages.
Set up multiple 2FA methods
Give yourself options and avoid getting locked out by setting up both app and SMS 2FA.
Switching 2FA methods
There are different ways to use 2FA with your MYOB account.
Here's how to switch between them.

How to report a security concern
If you receive a suspicious email or notice strange activity on your MYOB file, please report your concerns to MYOB by emailing securityincidents@myob.com.
To help us investigate, please provide as much detail as possible:
a brief description of the issue
serial number or client ID
name of the MYOB file
MYOB login email address
product or service you were using when you noticed the issue

Keeping your MYOB account secure
Passkeys and 2FA help protect your MYOB account from unauthorised access.
We recommend passkeys as your preferred account security method, or authenticator app 2FA with SMS 2FA as a backup. Email 2FA is not recommended and will be phased out in 2027.
Compare account security methods
If you think your account has been compromised, reset your password. You can also reset your passkey or 2FA if you lose access or need to change them.

MYOB Security Commitment
We use and follow industry best practices, including:
globally recognised ISO 31000 Risk Management Standard;
security controls based on the ISO 27001 Information Security Management Standard;
internal security team responsible for management and monitoring of all products and services;
use of secured encrypted channels, ensuring that the transmission of data between your computer/browser and the MYOB product is not compromised;
compliance with Payment Card Industry Data Security Standard (PCI DSS) for the handling of credit card data.
Read our Security Commitment.