Your artist account holds your music, earnings, and payout details. Here's how to keep it secure.
Use a strong password
If you signed up with email and password, use a strong, unique password. We recommend using a password manager. Don't reuse a password from another service.
Sign in with Google
The most secure option for most people is to use Sign in with Google — this delegates authentication to Google's infrastructure, which includes advanced security features like suspicious login detection.
Two-factor authentication (2FA)
BuyMyTune currently uses Firebase Authentication, which supports Google Sign-In (which itself offers 2FA through your Google account settings). Dedicated TOTP or SMS-based 2FA within BuyMyTune is on our roadmap.
To enable 2FA on your Google account (if you use Google Sign-In):
1. Go to myaccount.google.com/security
2. Under "How you sign in to Google", click 2-Step Verification.
3. Follow the prompts.
This secures your BuyMyTune login automatically.
Recognising suspicious activity
Watch out for:
- Emails claiming to be from BuyMyTune asking for your password (we'll never ask for this).
- Unexpected password reset emails you didn't request.
- Logins from unfamiliar locations (check your Google account's recent activity).
What to do if your account is compromised
1. Change your password immediately.
2. If you used Google Sign-In, secure your Google account first.
3. Contact us and we'll lock down your BuyMyTune account and review any suspicious transactions.
Common questions
I can't sign into my account. Try resetting your password via the Sign In page. If you used Google Sign-In and are locked out of Google, recover your Google account first.
Someone changed my payout details — what do I do? Contact us immediately. We'll freeze the account and investigate.