# Account Settings

The Account Settings section allows you to manage basic configuration for your workspace, including branding, timezone, and data retention preferences.

Go to: Settings → Account

## General settings

### 1. Account logo

Upload a logo to personalize your workspace.

<figure><img src="/files/9omyoFr61qxxSLEb4b7p" alt=""><figcaption></figcaption></figure>

### 2. Account information

Update basic details about your account.

<figure><img src="/files/OC41AUUoxBorDoHp1wtr" alt=""><figcaption></figcaption></figure>

#### Account name

* The display name of your workspace
* Visible across the platform (e.g., reports, dashboards)

#### Timezone

* Sets the default timezone for:
  * Reports and analytics
  * Scheduling and timestamps

{% hint style="info" %}
Ensure your timezone is correct to avoid discrepancies in reports and chat timestamps.
{% endhint %}

### 3. Data retention controls

Automatically deletes chat and conversation data after a defined period to help with compliance and storage management.

<figure><img src="/files/Xy8yeJDEoruRMmxUkONI" alt=""><figcaption></figcaption></figure>

#### Available options

* 5 days
* 1 month
* 3 months
* 6 months
* 12 months
* 24 months
* Never (data is retained indefinitely)

#### How it works

* Once a retention period is set, data older than the selected duration is automatically deleted
* The deletion process runs periodically in the background

#### Important considerations

* Deleted data cannot be recovered
* Applies to conversational data (chat history, messages)
* Recommended for organizations with compliance requirements (e.g., GDPR, HIPAA)

{% hint style="info" %}
**NOTE**:&#x20;

* Lite and Starter plan — Does not offer data retention controls, max retention duration is 12 months.
* Premium plan — Max retention duration is 24 months.
* Enterprise plan — Custom retention duration.
  {% endhint %}

## Security settings

The Security tab allows you to enhance access control and protect your workspace with additional authentication layers.

### 1. Two-factor authentication

Add an extra layer of security by requiring a verification code during login.

#### What it does

* Requires users to enter a one-time code along with their password
* Helps prevent unauthorized access even if passwords are compromised

#### How it works

* When enabled, users will be prompted to verify their identity using a code (typically via an authenticator app) during login

#### When to use

* Recommended for all teams
* Essential for accounts handling sensitive customer data

[Setting up 2FA](/support-and-billing/account-settings/2fa.md)

### 2. SSO Authentication

Allow your team to log in using your organization’s identity provider.

#### What it does

* Enables Single Sign-On (SSO) for your workspace
* Users can log in using existing credentials from providers like Google, Okta, Azure AD, etc.

#### Benefits

* Centralized access management
* Improved security and compliance
* Easier onboarding and offboarding of team members

{% hint style="info" %}
**NOTE**:

* Available on the **ENTERPRISE** plan
* SSO setup may require configuration with your identity provider
  {% endhint %}

[Setting up SSO login](/support-and-billing/account-settings/setting-up-sso-login.md)

## Developer settings

The Developer tab provides access to your API token, which is used to authenticate and trigger programmatic actions on WotNot.

Go to: Settings → Account → Developer

### API Access Token

The API Access Token is used to securely authenticate requests made to WotNot APIs.

#### What it does

* Authenticates API requests made from external systems
* Enables automation and integrations with your workflows

### Use Cases

#### 1. Trigger WhatsApp Campaigns (Webhooks)

You can use the API token to trigger outbound WhatsApp campaigns programmatically using webhooks.

* Send campaign messages to users based on events
* Automate notifications, reminders, and follow-ups
* Integrate with your CRM or backend systems

[For setup instructions, refer to this article](/build/outbound-bots/building-ongoing-campaign.md)

#### 2. Invoke Public APIs

Use the token to authenticate requests when interacting with WotNot’s public APIs.

* Create and manage conversations
* Trigger workflows or bots
* Fetch data and automate actions


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.wotnot.io/support-and-billing/account-settings.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.