Skip to main content

Profile and Security

Update name or email

  1. Click the gear icon (⚙️) in the top right to open Account Settings.
  2. Under Contact Information, update your email address.
  3. Click Save Changes.

Changing your email requires verification - a confirmation link is sent to the new address.

Change your password

  1. Click the gear icon (⚙️) in the top right to open Account Settings.
  2. Scroll to the Password section, enter your new password, and click Update Password.

If you've forgotten your password, use the Forgot Password link on the login page.

Enable Two-Factor Authentication (2FA)

  1. Click the gear icon (⚙️) in the top right to open Account Settings.
  2. Scroll to the Two-Factor Authentication section and toggle it on.
  3. On your next login, you'll be prompted for a one-time code sent to your email (valid for 10 minutes).

Adding team members

thanks.io does not support multiple logins for a single account. There is no way to add a second user with their own email and password who can access the same account.

If you need to manage separate brands, clients, or return addresses, subaccounts let you do that from the same login using the account switcher.

Return address

Your return name and address are set in Mail Preferences.

  1. Click the gear icon (⚙️) in the top right.
  2. Select Mail Preferences.
  3. In Return Address, set Show Return Address to choose whether a return address is printed.
  4. If Show Return Address is off, the form is hidden and the page shows No return address shown.
  5. If Show Return Address is on and you choose a custom return address, enter Name, Address Line 1, City, State, and Zip Code.
  6. Click Save Changes.

If Show Return Address is on, a complete custom address is required before you can save.

If you switch from hidden or default mode back to custom, the custom address fields start blank so you can enter your own details.

The return address you set here applies to all orders from this account. To use different return addresses automatically, use subaccounts - each subaccount can have its own return address.

Tips & best practices

  • Enable 2FA if your account has API access or subaccounts - a compromised account could affect multiple clients.
  • Use a strong, unique password.
  • If you see an unrecognized login in your login history, change your password immediately and contact support.

Limits & gotchas

  • 2FA OTP codes expire after 10 minutes.
  • 2FA is email-based - ensure your account email is accessible and not a shared inbox.