Dropbox is designed from the ground up with security in mind. We make sure your data is safe and secure by providing multiple layers of protection as well as controls you can enable to meet your security needs.
From the Security page, you can adjust team-wide settings. For example, you can set the ways your users authenticate to Dropbox, control and limit where your data can be stored, require 2FA when signing in, change default sharing settings, and add or remove team members. You can also review activity logs to make sure your team’s Dropbox accounts are being used the right way. Or take advantage of automated log analysis with industry-leading SIEM apps.
While we take comprehensive measures to protect your data, you play a key role too. By creating unique, strong passwords for each website, app, and online account you use—and changing them regularly—you’ll help keep your Dropbox account and other accounts safe.
Password managers like 1Password can help you generate strong passwords, store them safely, and sign in easily to your accounts.
A secure password is one that’s hard for a stranger to guess. Don’t use common words or a derivative of personal information, such as your name, the name of a family member or pet, or phone numbers, addresses, or birthdates. Uncommon words work well, but only if you use several together. The following tips will help you create unique, secure passwords. Try to use a combination of some (or all) of the below:
Uppercase and lowercase letters, symbols, and numbers
Non-standard uppercasing (for example, "uPPercasing")
Non-standard word spelling (for example, "spellllllling")
Personal slang words
Non-obvious numbers and symbols (note: using "$" for "s" or "0" for "o" is fairly common and likely not enough of a security measure)
Two-step verification (also known as 2FA or two-factor authentication) adds an extra layer of security to your account. With this feature turned on, you’ll need a six-digit security code as well as your username and password to sign into your account. You’d also need this code to link a new computer, phone, or tablet. You can have the codes sent to your phone in text messages or generated by a mobile app like Google Authenticator or Duo Mobile. Dropbox also offers the option of using a security key, rather than six-digit codes, for two-step verification. Security keys offer extra protection against phishing attacks and are convenient to use.
Require your team to enable two-step verification. With 2FA, company data stays safe even if a device is lost or stolen, or a password gets compromised.
How to enable two-step verification
Sign in to dropbox.com.
Click your avatar.
Select the Security tab.
Toggle Two-step verification to On.
- If you see Managed by single sign-on under the Security tab, your team uses single sign-on (SSO). This means you might not be able to use two-step verification with Dropbox.
Click Get started.
Re-enter your password.
Enter a security code to complete the setup (you'll receive it either via text message or authenticator app, depending on the preferred method you entered).
Note: If you use an authenticator app to receive your verification codes, please add primary and secondary backup phone numbers.
Require two-step verification for your team
Dropbox Business team admins can require all or some team members to use two-step verification. You can do this through the admin console or your identity management provider if you use single sign-on (SSO). Each team member has to enable two-step verification on their own account. However, you can request that members enable this feature, and then ensure that it stays on once enabled.
Sign in to dropbox.com with your admin credentials.
Click Admin Console.
Under Authentication settings, check Require two-step verification.
Select whether you'd like to require two-step verification for some or all team members.
If you've selected Require for specific members, enter the email addresses of the team members you'd like to use two-step verification, and then click Proceed.
If you accidentally delete a file or save a new version of a file you’re not happy with, rest easy. Dropbox securely stores copies of your deleted files and folders for 120 days, including previous versions of files. To instantly recover a file—or restore it to a previous version—visit dropbox.com.
If you’re an admin on an Advanced or Enterprise plan, you can sign in as another user on your team. You can do this to troubleshoot issues like file recovery, set up a new employee account, or keep a project moving while team members are away.
How to restore previous versions of files
Sign in to dropbox.com.
Select the file you'd like to access previous versions of.
Click Version history in the menu on the right sidebar.
- Alternatively, you can click "…" (ellipsis) beside your file's name to see more options.
Select a version to preview.
Click Restore on the version you'd like to restore.
Note: On Windows and Linux, right-click the file and select Version history to preview and restore a previous version. On Mac, press control on your keyboard and simultaneously click the file to select View previous versions.
How to recover deleted files in Dropbox
Sign in to dropbox.com.
Click Files in the sidebar.
Click Deleted files.
Locate the deleted file or folder you want to recover, and click on the name.