build 3.0.0 · aes-256-gcm / ml-kem-768 · eu/de · ram only

Lost access to your authenticator app.

Work through these steps in order. Most people recover access within a few minutes using backup codes. If you have none left, contact support — we can verify your identity and reset your authenticator manually.

1

Try your backup codes

At the login screen, after entering your email and API key, click Use a backup code. Enter one of the 10 single-use codes you received when you first enrolled your authenticator.

If you find a code and it works: sign in, go to Account → Security → Authenticator, and re-enroll a new authenticator app before your session expires.

Backup codes are saved in your password manager if you followed the setup guide. Check 1Password, Bitwarden, or wherever you store secure notes.

2

Check if your authenticator is still accessible

The TOTP secret is often stored in cloud backup by authenticator apps:

  • 1Password / Bitwarden — the TOTP key is in your vault. Log in on any device to access it.
  • Authy — install Authy on a new phone, sign in with your Authy account, and re-activate multi-device backup.
  • Raivo (iOS) / Aegis (Android) — check iCloud/device backup. If you used encrypted local backup, restore on your new device before signing into Paramant.
3

Contact support for a manual reset

If you have no backup codes and cannot recover your authenticator from a backup, email privacy@paramant.app from the email address registered on your account.

Include the following in your message:

  • Your account email address
  • A brief description of how you lost access (lost phone, wiped device, etc.)
  • The date of your last successful login, if you remember it
  • Any transfer IDs or file names from recent activity to help verify identity

We respond within 48 hours and will ask follow-up questions to verify your identity before resetting anything.

We cannot reset accounts without identity verification. This is deliberate — it prevents an attacker from using the support channel to take over accounts.

4

Re-enroll after recovery

Once support resets your authenticator, you will receive a new setup link by email. Follow the authenticator setup guide to enroll a new app. This time, save your backup codes in a password manager before closing the setup page.


Common questions

How long does the manual reset take?
We respond within 48 hours. The verification exchange typically takes one to two rounds of email. Plan for 2–4 days from first contact to restored access if identity questions require extra documentation.
My team account is locked out and it's urgent.
Flag "URGENT" in the subject line and explain the business impact. We prioritize locked team accounts. If another team member has admin access, they can initiate a recovery on your behalf from the dashboard.
Can I prevent this in the future?
Use an authenticator that syncs to cloud backup (1Password or Bitwarden), and save backup codes in your password manager at enrollment. These two measures together make account lockout extremely unlikely.

Related

Backup codes

Generate, store, and use emergency backup codes.

Set up your authenticator

Re-enroll after account recovery.