Two-factor authentication (2FA) adds an essential extra layer of security to your PaySauce account. While your password is the first line of defense, 2FA requires a second verification step - something only you have access to, like your phone or an authenticator app.
Why this matters for your payroll:
Your PaySauce account contains sensitive information including employee personal details, bank account numbers, IRD numbers, and salary information. If someone gains unauthorised access to your account, they could:
View confidential employee data
Process unauthorised payments
Modify pay rates or bank details
Access financial records
How 2FA protects you:
Even if someone discovers or guesses your password, they still can't access your account without the second verification code from your phone or authenticator app. This makes unauthorised access more difficult, protecting both your business and your employees' sensitive information.
We are enforcing the use of 2FA on all PaySauce accounts except employee accounts. We still recommend that employees enable 2FA, however it is not mandatory. It takes just a few minutes to set up and provides ongoing protection for your most sensitive business information.
Follow these steps below to get it set up.
Download an authenticator app (if needed)
If you plan to use an authenticator app for 2FA and don't already have one installed, you'll need to download one first. We recommend using one of these trusted authenticator apps:
Microsoft Authenticator - Available for iOS and Android
Google Authenticator - Available for iOS and Android
Authy - Available for iOS, Android, and desktop
To download:
Open the App Store (iOS) or Google Play Store (Android) on your phone
Search for your chosen authenticator app
Download and install the app
Once installed, you're ready to set up 2FA on your PaySauce account
You can also choose to use text message (SMS) for 2FA if you prefer not to use an authenticator app.
Set up 2FA on the web (on your computer)
The starting point to navigate to your account settings depends on your account type, but is up in the top right corner when you are on the web no matter which account type you have.
Once logged in, navigate to your Account profile in the top right corner, either by clicking on the profile icon or selecting 'Account Settings' from the account menu in the top right of your screen. The option presented to you is determined by your account type.
Select 'Authentication' from the menu.
Select 'Enable 2FA'.
Follow the on screen instructions to set up your authentication method. You can either use an authentication app or text message.
If you are using an authenticator app, open your app of choice and scan the QR code to add a new account.
If you want to choose 2FA by text message, select 'choose another option'.
After clicking 'next' you will be prompted to enter your verification code from your selected authentication method.
It is extremely important that you securely save your recovery codes in the next step.
Recovery codes are used to access your account in the event you cannot receive two-factor authentication codes. When you verify your 2FA for the first time, you will be presented with some recovery codes.
You can download or copy them to a secure place in the event that your 2FA verification option is not available - for example, if you change your phone number or lose access to the authenticator app.
If you did not save them, you can generate new recovery codes from the authentication settings. You must be logged in to do this.
2FA is now enabled! You will return to the authentication settings screen.
Set up 2FA on mobile (in the PaySauce app)
Open the PaySauce app and tap on the 'Account' icon.
Tap 'Security', then toggle on 2FA.
Follow the instructions to complete your set up using your selected authentication method.
Change your 2FA method
If you want to change your authentication method, disable your current 2FA set up in the account settings and repeat the set up process. Select your preferred method during the 2FA set up.
Troubleshooting
If you've got 2FA set up but are encountering issues, here's the first couple of things for you to check which cover most cases.
Authenticator app
Check your device's time settings
This is the most common cause. Authenticator codes are time-based, so if your phone's clock is even slightly off, the codes won't work.
iPhone:
Go to Settings > General > Date & Time
Check that "Set Automatically" is on
Android:
Go to Settings > System > Date & Time
Check that "Set time automatically" is on
Make sure you're using the latest code and it hasn't expired
Codes refresh every 30 seconds. Wait for a fresh code to appear before entering it and ensure you submit before it expires.
Double-check you're entering the code correctly
The codes are 6 digits with no spaces. Make sure you haven't accidentally included a space or misread a number.
If none of these work:
Try removing and re-adding PaySauce in your authenticator app
Make sure you're using a supported, reliable authenticator app (Google Authenticator, Microsoft Authenticator, Authy, or similar)
SMS codes
During set up, check that you are entering the correct phone number.
Wait a few minutes
Sometimes there's a delay with SMS delivery. Wait 2-3 minutes before requesting another code.
Check if the message was filtered
Some phones and carriers filter automated messages:
iPhone users:
Go to Settings > Apps > Messages
Turn off "Filter Unknown Senders" if it's on
Android users:
Open your Messages app and check the Spam folder
Check your carrier's spam protection app (if you have one installed)
Contact your mobile service
If messages still aren't coming through, your carrier (Spark, Vodafone, 2degrees, etc.) may be blocking automated SMS. You may need to contact them to allow messages from verification services.
Alternative option
Switch to an authenticator app instead - it's more reliable and doesn't depend on your mobile number.
Sharing user accounts
Every person in your business who needs to log in to PaySauce will need their own user account. If you're sharing an account, you need to set up new user accounts and then enable 2FA on each one. You can read more here: