1. Check Google’s Security Checkup Tool

Google provides a built-in security checkup tool that offers recommendations and settings to keep your account safe. It lists potential security issues in your account and suggests solutions to fix them. For example, it may ask you to enable two-factor authentication, remove inactive devices, or change your password. The security checkup tool is quite useful for people who don’t want to check each security setting manually. To use this tool, follow these steps: Instead of running the security checkup tool, you can manually go through various security setting offered by Google and make the changes we recommend below.

2. Set a Strong Password

Is your Google password based on something that one could easily figure out, like your name, birthday, partner’s name, address, etc.? Then stop reading this post and please change your password ASAP as shown below. Please make sure to use a long and complex password containing at least one number, one capital letter, and one special character in addition to the normal characters. Also, do not use common words or anything related to your personal life, and change your password every six months. That’s good practice for all of your passwords.

3. Use Two-Factor Authentication (2FA)

Generally, you enter your email ID and password to log in to your Google account. We recommend inserting an extra step here – enable two-factor authentication to add another security layer to your account. With 2FA enabled, logging in to your Google account on new devices will require your email address, password, and an additional code to verify that it is you. This way nobody can log in to your Google account even if they have your email address and password. The 2FA code will be sent:

as a voice or text message,as a prompt on currently signed-in devices,to an authenticator app, orto a physical security key if you have purchased one.

You can even download and print offline backup codes just in case you don’t have access to your phone when you want to log in.

How to Enable 2FA

To turn on 2-Step Verification (a type of 2FA) for your Google account, follow these steps: Use an app like Google Authenticator or a password manager to generate 2FA codes on your device instead of using SMS as texts can be easily intercepted.

Add Backup Methods

Once 2-Step verification is turned on, you can view and enable other code generation methods.

4. Add or Update Recovery Email and Phone Number

It’s essential to connect one of your other emails to Google as a recovery account. This will allow you to regain access to your Google account if you cannot log in, either because you’ve forgotten your password or because something else has gone wrong. It’s ideal to have both a phone number and an email address as recovery options. In case one doesn’t work, you will still have access to the other option. To add a recovery email and phone number:

Your Google account can be used to log in to third-party apps like extensions, add-ons, apps, and similar services. You might have granted permission to such tools to access data associated with your Google account, such as your Google documents, contacts, etc. While it’s safe to do so, it’s always a good idea to go through the list of these apps occasionally and revoke permissions from apps that you no longer need or don’t recognize. Note: Revoking app access will not delete your account from the third-party app. It only revokes the app’s access to your Google account.

Similar to apps, you should also go through the list of devices where you are signed in to your Google account. Then, remove old or inactive devices and those you don’t recognize as yours.

7. Turn on Enhanced Safe Browsing

Google offers another built-in tool to protect you from dangerous websites, downloads, and extensions. Here’s how to enable it.

8. Encrypt Your Synced Chrome Data

If you are especially worried about the sanctity of the Chrome data that is syncing to your account, enable a passphrase to add a security layer to it. Once you do so, you will need the passphrase whenever you turn on sync for Chrome on any new device. Image credit: Unsplash