eventbrite header logo mark

Help Centre

Help Centre

Keeping your account secure on Eventbrite

Eventbrite follows and maintains strict guidelines to proactively ensure the security of your account. Learn more about privacy and security on Eventbrite , and follow our guidance for keeping your online accounts secure.

In this article

  • Use an email address you regularly check for your Eventbrite account

  • Practice good password hygiene

  • Enroll in multi-factor authentication

  • Beware of phishing scams and malicious behavior

  • Add team members to help you manage your events

  • Keep your device and browser updated

  • What to do if you suspect your account has been compromised

Use an email address you regularly check for your Eventbrite account

All event-related communication and notifications from Eventbrite about significant changes to your account are sent to the email address associated with your Eventbrite account. To verify that an email was sent by Eventbrite:

  • Hover over the “from” email address and verify that it came from the Eventbrite.com domain.

  • Check for misspellings or unusual characters in the email address.

  • Eventbrite will never ask for your login credentials via email or through any website other than the Eventbrite site.

If you’re ever unsure about the authenticity of an email that appears to be from Eventbrite, don’t open any attachments or select any links.

Practice good password hygiene

One of the most impactful ways you can protect the security of your online accounts is to practice good password hygiene. To do so:

  • Set a strong password. Strong passwords are at least 10 characters long and contain upper and lowercase letters, numbers, and non-alphanumeric characters.

  • Change your password often.

  • Use different passwords for every site.

Tip: A password manager app generates strong passwords automatically and stores them all in one place that is accessed by a ‘primary’ password. With a password manager app, your ‘primary’ password is the only one you’ll need to remember.

Enroll in multi-factor authentication

Multi-factor authentication is a security measure that requires users to provide two or more methods of verification to successfully access an account. Enrolling in multi-factor authentication prevents unauthorized users from accessing your account, protecting sensitive data like your payout details or attendee information. 

Learn more about logging in with multi-factor authentication.

Beware of phishing scams and malicious behavior

Phishing scams target victims by sending emails that appear to come from legitimate sources, with the goal of gaining access to personal or financial information. As a best practice, check for the following red flags:

  • The email was sent from an unknown source.

  • There are misspellings or strange characters in the email address.

  • They are using the email to request personal or financial information.

  • There is an urgent call-to-action asking you to select a link or respond immediately.

  • The email body contains spelling errors, bad grammar, or suspicious attachments.

When in doubt, don’t interact with the email or select any links. Instead, contact the company or individual directly. Don’t use any contact info provided to you in the email you received. Instead, open a new tab and visit their website to find their contact information.

Check your email’s auto-forwarding rules: Hackers commonly conceal malicious activity by editing your auto-forwarding rules in an attempt to mask any malicious activity. If your settings look suspicious, update them and change your email password immediately. 

If you accidentally select a phishing link or download a suspicious attachment, don’t provide any personal information. Secure your device by disconnecting from the internet, backing up critical files, scanning for malware, and changing your password for all of your online accounts.

Add team members to help you manage your events

If you host events on Eventbrite, don’t share your login credentials with team members. Sharing your login credentials puts your account at risk of being locked for security reasons. 

Instead, use our roles and permissions feature. If you have a group of team members who only need permission to check in attendees or guests using a single login, you can assign them to one of our default "Check-in" roles. If you have team members who need additional permissions to help you manage your events, create a custom role. This allows you to give team members access to create and manage events in your account, using their own login credentials.

Keep your device and browser updated

Be sure to keep your device and web browser up to date on the latest versions, as these will include any new security patches and enhanced security updates. Before installing any extensions onto your browser, read reviews and the extension description to check for anything that seems odd or suspicious, such as unexpected data collection.

What to do if you suspect your account has been compromised

If you notice a change was made to your account that you didn’t make:

  1. Check with any team members who have access to help manage your events, and confirm if they made the change.

  2. Reset the password on your Eventbrite account and any other online accounts if they share a password with this account. 

  3. Reset the password for the email address associated with your Eventbrite account. If a bad actor gains access to your email account, they can use that to reset your Eventbrite password. 

  4. Reset the password on any social media accounts if they are associated with your Eventbrite account.

  5. Confirm that any bank account details you have saved in your Eventbrite account are still correct.

If you believe your account has been compromised and you need assistance, contact us .

Still have questions?