Skip to main content

Understanding Multiple-Login or IP-Address Security Flags in PyjamaHR: Why Your Account Gets Flagged and How to Avoid It

Updated over 5 months ago

Executive Summary

PyjamaHR’s security system uses advanced monitoring to detect multiple logins and suspicious IP-address activity to protect your account from hacking and unauthorized access. If the system detects logins from different devices, locations, or IP addresses—especially simultaneously—your account may be temporarily suspended or flagged for review. This article explains why this happens, how to avoid it, and what to do if your account is flagged, based on real customer scenarios and the latest PyjamaHR security policies.

Detailed Overview

What Are Multiple-Login and IP-Address Security Flags?

PyjamaHR is SOC-2 and ISO-compliant, which means we enforce strict security protocols to protect user data and prevent account hijacking. Our system automatically monitors for:

  • Multiple logins from different devices, browsers, or locations

  • Simultaneous logins using the same credentials

  • Frequent changes in IP address (including VPN use)

  • Account sharing among multiple users

When such activity is detected, PyjamaHR’s security system may:
- Flag your account for suspicious activity
- Temporarily suspend access while our team investigates
- Require manual verification or a support call to restore access

Why Does PyjamaHR Do This?

  • Prevent hacking and account takeovers (especially after a surge in fraudulent activity)

  • Ensure compliance with SOC-2 and ISO standards

  • Protect candidate and company data

  • Maintain platform integrity for all users

How Does This Integrate with Other Features?

  • User Management: Each user must have their own login. Sharing credentials is not allowed.

  • Team Access: Add team members via Settings → Team, assigning appropriate roles.

  • Two-Factor Authentication: Recent updates have introduced 2FA for added security.

Step-by-Step Guide: What to Do If Your Account Is Flagged

1. Recognize the Warning

You may see messages like:
- “Suspicious activity detected. Your account has been flagged for suspicious activity. For security reasons, access has been temporarily suspended. Please contact support to restore access.”
- “Your account has been frozen while our team investigates multiple logins from different devices, locations, or browsers.”

2. Immediate Actions

If you are locked out:
1. Do NOT attempt repeated logins from different devices or locations.
2. Contact PyjamaHR Support via chat or email. Provide your registered email and a contact number.
3. Wait for a support call or email. Our team will verify your identity and activity.

If you are NOT locked out but see warnings:
1. Log out from all devices except your primary one.
2. Change your password immediately.
3. Do not share your credentials with anyone else.

3. Restore Access

  • Support will review your account activity. You may be asked to confirm recent logins or explain device/location changes.

  • You may be required to join a verification call (Zoom/phone).

  • Once verified, your account will be re-enabled.

  • You may be asked to add additional users as separate accounts if you need multi-user access.

4. Prevent Future Flags

  • Always use your own login. Do not share credentials.

  • If you need multiple users, add them via Settings → Team.

  • Avoid logging in simultaneously from multiple devices or locations.

  • If you travel or use VPNs, inform support in advance if possible.

Advanced Usage & Best Practices

Power User Tips

  • Remote Work: If you work from multiple locations, always log out from one device before logging in from another.

  • VPN Usage: Use a static IP VPN if your company requires VPNs. Dynamic IP VPNs can trigger security flags.

  • Device Management: Limit your login to one device at a time. If you must switch devices (e.g., office to home), log out from one before logging in to the other.

  • Team Collaboration: Assign each team member their own user account and role. This avoids accidental account sharing and security flags.

Do’s and Don’ts

Do:
- Use your own credentials only.
- Add team members as users, not by sharing your login.
- Change your password if you suspect unauthorized access.
- Contact support if you plan to travel or change your usual login pattern.

Don’t:
- Share your login credentials with colleagues, assistants, or external recruiters.
- Use the same login on multiple devices at the same time.
- Use dynamic VPNs that frequently change your IP address.
- Ignore security warnings or repeated account flags.

Troubleshooting & Common Issues

Common Error Messages & Solutions

Error: “Suspicious activity detected. Your account has been flagged for suspicious activity. For security reasons, access has been temporarily suspended. Please contact support to restore access.”
- Solution: Contact support, provide your email and phone number, and wait for verification.

Error: “Your account has been frozen while our team investigates multiple logins from different devices, locations, and browsers.”
- Solution: Wait for support to contact you. Be ready to explain your recent login activity.

Scenario: You use both your laptop and mobile to access PyjamaHR.
- Solution: This is allowed if you are not logged in simultaneously on both. Always log out from one before using the other.

Scenario: You use a VPN for security.
- Solution: If your VPN changes IP addresses frequently, it may trigger a flag. Prefer static IP VPNs or inform support if you must use a dynamic VPN.

Scenario: You travel frequently and log in from different cities/countries.
- Solution: Let support know if you expect to log in from new locations. Avoid simultaneous logins from different places.

Scenario: Your account is repeatedly flagged even after following best practices.
- Solution: Contact support to review your account. There may be a technical issue or a need to whitelist your devices/IPs.

Recovery Procedures

  • If locked out: Contact support, verify your identity, and wait for manual reactivation.

  • If you suspect your account was hacked: Change your password immediately and inform support.

When to Contact Support

  • You are locked out and cannot restore access.

  • You need to use PyjamaHR from multiple locations/devices for legitimate reasons.

  • You believe your account was flagged in error.

  • You need to add more users to your account.

Comprehensive FAQ

1. Why did my account get flagged for multiple logins?
- PyjamaHR detected logins from different devices, locations, or browsers, which could indicate account sharing or hacking.

2. Can I use PyjamaHR on my laptop and mobile?
- Yes, but not simultaneously. Log out from one before logging in to the other.

3. What if I travel or work from multiple locations?
- Avoid simultaneous logins from different locations. If you travel often, inform support to avoid repeated flags.

4. Can I share my login with my assistant or team?
- No. Each user must have their own login. Sharing credentials is not allowed and will trigger security flags.

5. What if my account is suspended and I need urgent access?
- Contact support immediately with your registered email and phone number. Explain your situation for priority handling.

6. How do I add more users for my team?
- Go to Settings → Team, and invite users with their own email addresses.

7. Does using a VPN cause issues?
- Dynamic IP VPNs can trigger security flags. Use a static IP VPN if possible.

8. Why do I keep getting flagged even though I’m not sharing my account?
- Frequent device changes, dynamic IPs, or simultaneous logins can trigger flags. Review your login habits and consult support.

9. Can I log in from home and office on the same day?
- Yes, as long as you are not logged in simultaneously from both places.

10. What if my account is hacked?
- Change your password immediately and contact support.

11. Can I get a list of devices/IPs that have accessed my account?
- PyjamaHR does not currently provide this, but support can review suspicious activity with you.

12. What if my account is flagged due to a legitimate business need (e.g., finance team needs access)?
- Add the finance team as separate users. Do not share your login.

13. How do I prevent being flagged if my company uses remote work or multiple offices?
- Ensure each user has their own login. Avoid simultaneous logins from different locations.

14. What if I need to use PyjamaHR in two different cities (e.g., Mumbai and Bangalore)?
- Log out from one location before logging in from another. Avoid simultaneous access.

15. What if I use a dynamic IP broadband at home?
- Frequent IP changes can trigger flags. If possible, use a static IP or inform support.

Related Features & Next Steps

  • User Management: Add team members via Settings → Team for proper access control.

  • Two-Factor Authentication: Enable for enhanced security.

  • Audit Logs: Review account activity with support if needed.

  • Password Management: Change your password regularly and after any suspicious activity.

Recommended Additional Setup:
- Review your team’s access needs and assign individual logins.
- Educate your team on security best practices.
- Set up 2FA for all users.

Related Help Articles:
- Inviting Team Members and Managing User Access
- How to Change Your Password in PyjamaHR
- Troubleshooting Login Issues
- Understanding User Roles and Permissions

Key Takeaways

  • Never share your login credentials.

  • Add each user as a separate account for compliance and security.

  • Avoid simultaneous logins from multiple devices or locations.

  • Contact support if you are locked out or need to explain legitimate multi-location use.

  • Follow best practices to keep your account secure and avoid workflow interruptions.

If you have further questions or need urgent help, contact PyjamaHR support with your registered email and phone number for priority assistance.

Did this answer your question?