Change Your Email, Mobile Number, or Password Securely
Account Settings protects login email, mobile and password changes with a verification step and shows recent security activity for the signed-in account.
Before you begin
Section titled “Before you begin”- Use the official Yepsta sign-in domain and a private device or trusted browser.
- Keep access to the current login email and new email/mobile destination.
- Know the current password when the account has one.
- Use a unique password of at least eight characters that is not the current password.
Change the login email
Section titled “Change the login email”- Open Account Settings and choose Change Email.
- Enter the current password when requested and the new unique email.
- Select Send OTP.
- Check the new email for the six-digit code.
- Enter the code and select Verify & Update.
- Confirm the page shows the new masked email as verified.
The new email cannot already belong to another Yepsta login. Future password OTPs go to the current verified login email.
Change the login mobile
Section titled “Change the login mobile”- Choose Change Mobile.
- Enter the current password when requested and a valid unique Indian mobile number.
- Select Send OTP.
- Check WhatsApp on the new number for the six-digit code.
- Enter the WhatsApp OTP and choose Verify & Update.
- Confirm Mobile verified appears.
The verified business mobile is required for protected business account and onboarding workflows. If WhatsApp OTP delivery is unavailable, preserve the current verified number and contact Support instead of repeatedly changing it.
Change or set the password
Section titled “Change or set the password”Choose Change Password, enter the current password when required, then enter and confirm the new password. Select Send OTP, use the code sent to the current login email, and choose Verify & Update. A passwordless account can set its first password after email OTP verification.
OTP safety and timing
Section titled “OTP safety and timing”The account screen shows the masked destination, remaining attempts and expiry. Codes currently expire after 10 minutes, with a resend cooldown and request limit. Request a fresh code after expiry; do not keep guessing after an incorrect attempt.
Customer Portal OTP
Section titled “Customer Portal OTP”The Customer Portal uses OTP-only sign-in with the customer’s verified email or mobile. A customer can verify or change their profile email/mobile from the portal. Business users must not request or enter a customer’s OTP on their behalf.
Security responsibilities
Section titled “Security responsibilities”- Owners should grant only job-required permissions and remove unnecessary access promptly through supported workflows.
- Managers should use their own login and report unexpected access.
- Staff should sign out on shared devices and protect payslip/customer information.
- Review Recent Security Activity and ask the owner to check Activity Logs when a change is unfamiliar.
Last reviewed:
