ChatGPT Advanced Account Security has been introduced as a new opt-in setting for ChatGPT accounts, designed for users at higher risk of digital attacks and for those who want stronger protection. It is part of OpenAI’s broader cybersecurity action plan and is aimed at improving account safety while making advanced protections easier to activate in one place.

In addition, the feature is intended for people who may face increased security risks, including journalists, elected officials, political dissidents, researchers, and other security-conscious users. Over time, ChatGPT accounts can store sensitive personal and professional context, especially as AI becomes central to workflows and connected tools. Therefore, stronger safeguards are being positioned as a key requirement for higher-risk usage.

To begin with, Advanced Account Security strengthens sign-in protections. It requires passkeys or physical security keys and disables password-based login. This helps ensure phishing-resistant authentication becomes the default for enrolled users. It applies to both ChatGPT and Codex accounts accessed through the same login.

Furthermore, account recovery has been significantly tightened. Email and SMS-based recovery are disabled to reduce risks from compromised email or phone accounts. Instead, users must rely on backup passkeys, security keys, or recovery keys. As a result, OpenAI Support will not be able to assist with account recovery for users enrolled in this mode.

In addition, session security has been enhanced. Sign-in sessions are shortened to reduce exposure if a device is compromised. Users also receive alerts for new logins and can review and manage active sessions across devices.

Another key update is automatic training exclusion. Conversations from accounts using Advanced Account Security will not be used for model training by default, offering stronger privacy controls for sensitive use cases.

Meanwhile, OpenAI has partnered with Yubico to support phishing-resistant authentication. The partnership includes preferred pricing on security key bundles. These include the YubiKey C Nano for laptop use and the YubiKey C NFC for backup and mobile compatibility. However, users can also use any FIDO-compliant security key or software-based passkeys.

Moreover, Trusted Access for Cyber users will be required to enable Advanced Account Security starting June 1, 2026, for access to more advanced cyber-capable models. Organizations may alternatively confirm phishing-resistant authentication through single sign-on systems.

The feature is available as an opt-in setting in the Security section on web. It applies across ChatGPT and Codex through the same account login and reflects OpenAI’s focus on stronger privacy and protection controls.

Overall, ChatGPT Advanced Account Security represents a significant step in strengthening authentication, recovery, session control, and privacy protections for users who need higher levels of account security.

Related post

View all