Everyone with a Proof account has a session timeout applied to their account for security reasons. Proof automatically logs users out after:
- 30 minutes of inactive time
- 8 hours of active time in their account
These timeouts are part of Proof's commitment to security and AAL2 compliance, one of three levels of identity proofing defined by the US Government’s National Institute of Standards and Technology (NIST). Timeouts secure your account and help prevent someone from using your account without your knowledge.
Inactive timeout
If you are inactive in your Proof account for 25 minutes, you will receive a pop-up message warning you that you'll be logged out of your account for 5 minutes. Click Stay logged in to remain in your account, or Log out to exit your account.
Users accessing their accounts with a browser on a mobile device will not see a warning message when they are nearing the time limit; they will be automatically logged out.
This setting can be changed for your organization, but it can only be reduced, not increased.
Active timeout
If you have been logged in for 8 hours, your session will automatically end even if you are currently active.
If you're in a meeting when this time limit is reached, you will be logged out after your meeting is complete.