OpenAI introduces Advanced Account Security for ChatGPT users: Here is what will change
Follow UsPasswords replaced with passkeys and security keys to improve protection against phishing attacks
Email and SMS recovery removed, making account access more secure but harder to recover
Conversations excluded from training and real-time alerts added for better privacy and monitoring
OpenAI seems to be taking account security seriously. The AI startup has announced a new opt-in feature called Advanced Account Security for ChatGPT users. The company announced the new feature via official blog post and stated that the feature is designed specifically for individuals handling sensitive information, including journalists, researchers and public figures, while remaining available to any user seeking higher security.
SurveyThe new system, as per the company, replaces the traditional password-based logins with more secure methods such as passkeys and physical security keys. With this, the company claims that the accounts are now more resistant to phishing attacks. The new feature also strengthens the account recovery option by removing the email and SMS based recovery, instead of requiring backup keys or passkeys. However, this also means users enrolled in the feature will not be able to rely on standard support channels for account recovery.
“Today, we’re introducing Advanced Account Security, a new opt-in setting for ChatGPT accounts, designed for people at increased risk of digital attacks, as well as for those who want the strongest account protections available,” the company wrote in its blog post.
Also read: Apple reports Q2 2026 earnings: iPhone 17 lineup and MacBook Neo see huge demand
The Advanced Account Security also shortens the login session durations and introduces real-time alerts for suspicious activity. Users can also review and manage all active sessions across devices. In addition, conversations from accounts with this setting enabled will automatically be excluded from model training, offering an extra layer of privacy.
The company has also announced a partnership with Yubico to offer discounted hardware, security keys, including YubiKeys, to encourage adoption of phishing-resistant authentication methods. The company also confirmed that users enrolled in its Trusted Access for Cyber programme will be required to enable this feature starting June 1, 2026.
