Overview
ChatSpark provides comprehensive team management and security features to help you collaborate safely and maintain control over your account:
- Team Management — Invite members and assign roles (Pro & Enterprise)
- Two-Factor Authentication — Add an extra layer of security to your account
- Session Management — View and control active login sessions (Enterprise)
- Audit Logging — Track all account activity with detailed logs (Enterprise)
Access these features from Team & Security in your dashboard sidebar.
Team Management
Collaborate with your team by inviting members and assigning appropriate roles. Team members access your chatbots, training data, and analytics based on their assigned permissions.
Team features are available on Pro and Enterprise plans. Pro allows 2 total members (owner + 1 admin), while Enterprise supports unlimited team members.
Roles & Permissions
Each team member is assigned a role that determines what they can access and modify:
| Role | Permissions | Best For |
|---|
| Owner | Full access to everything including billing | Account holder |
| Admin | Manage agents, actions, team members (no billing) | Managers, team leads |
| Analyst | Read-only access to agents, analytics, settings | Reporting, QA review |
| Developer | Agents, AI Actions, webhooks, analytics (read) | Technical implementation |
Pro plans can assign the Admin role only. Analyst and Developer roles are available on Enterprise plans.
Inviting Team Members
To invite a new team member:
- Go to Team & Security in your dashboard
- Click Invite Member
- Enter their email address
- Select a role from the dropdown
- Click Send Invitation
The invitee will receive an email with a link to accept the invitation. Invitations expire after 7 days. If expired, simply send a new invitation.
If the invitee doesn't have a ChatSpark account, one will be created automatically when they accept the invitation.
Managing Members
From the Team tab, you can:
- View all members — See active members and pending invitations
- Search — Find members by name or email
- Filter — Show all, active, pending, or inactive members
- Change roles — Update a member's role as needed
- Remove members — Revoke access for team members
- Cancel invitations — Cancel pending invitations
- Export — Download team data as CSV
Two-Factor Authentication
Add an extra layer of security to your account with two-factor authentication (2FA). When enabled, you'll need both your password and a verification code from your authenticator app to log in.
Setting Up 2FA
- Go to Team & Security and click the Security tab
- Click Enable Two-Factor Authentication
- Scan the QR code with your authenticator app (Google Authenticator, Authy, etc.)
- Enter the 6-digit code from your app to verify
- Save your backup codes — These one-time codes let you log in if you lose access to your authenticator
When you enable 2FA, you'll receive 10 backup codes. Store these in a safe place — if you lose access to your authenticator app, these codes are the only way to recover your account.
Manual Entry
If you can't scan the QR code, click “Can't scan?” to reveal the secret key. Enter this key manually in your authenticator app.
Disabling 2FA
To disable 2FA, go to the Security tab and click Disable 2FA. You'll need to enter a verification code from your authenticator to confirm.
Session Management
Enterprise plans only
View and control all active login sessions for your account. Session management helps you:
- See all devices and locations where you're logged in
- Identify suspicious or unauthorized access
- Terminate sessions remotely
Viewing Sessions
The Security tab shows all active sessions with:
- Device info — Browser and operating system
- IP address — Location of the login
- Last active — When the session was last used
- Current session — Indicates which session you're using now
Terminating Sessions
Click the X next to any session to terminate it. You can also click Terminate All Other Sessions to log out of all devices except your current one.
Regularly review your active sessions, especially if you've logged in from shared or public computers. Terminate any sessions you don't recognize.
Password Policy
Enterprise plans only
Enterprise accounts enforce strong password requirements:
- Minimum 12 characters
- Must include uppercase, lowercase, number, and symbol
- Password history — Can't reuse your last 5 passwords
- Account lockout — 5 failed attempts triggers a 15-minute lockout
Audit Logging
Enterprise plans only
Track all account activity with comprehensive audit logs. Audit logging is designed for SOC2 compliance and provides a complete trail of who did what and when.
What Gets Logged
Audit logs capture events across 14+ categories:
- Authentication — Logins, logouts, failed attempts
- Password — Password changes and resets
- 2FA — Two-factor enable/disable events
- Sessions — Session creation and termination
- Team — Member additions, removals, role changes
- Agents — Chatbot creation, updates, deletion
- Actions — AI Action configuration and execution
- Billing — Subscription changes
- Payments — Payment method updates
- Integrations — Webhook and integration changes
- Settings — Configuration updates
Viewing Audit Logs
Access audit logs from the Security History tab:
- Filter by category — Focus on specific event types
- Search — Find events by action or resource
- View details — Click any entry to see full details including IP address, browser, and metadata
- Export — Download logs as CSV for compliance reporting
Audit logs are retained for 90 days. Export logs regularly if you need longer retention for compliance purposes.
Audit logs show activity from all team members, giving owners and admins complete visibility into account operations.
