This article explains under which circumstances a security token will be required to log in to your Personio account. The security token is an additional Personio security feature to protect your data from being accessed by third parties.

Note
As Personio contains highly sensitive employee data, this functionality cannot be deactivated.

When will the Token be Triggered?

Personio has an automated monitoring system which detects suspicious activity such as different browsers or IP addresses being used or failed login attempts. If any suspicious activity is identified, you will receive an email containing a one-time security token which you must enter along with your password to log into your account. 

Where Can I Find the Security Token?

The security token is sent to the employee's email address that has been stored in the system. In this email, you can also find a timestamp of the most recent login attempt, the kind of device that was used, and the IP address and country from where the login happened. The token will be valid for 20 minutes from the time it is sent.