Thanks @Nate. Yes, I think it’s critical now that we’re importing more and more personal data into the platform. And to close the loop on the implementation idea, I’d recommend TOTP (Authy, FreeOTP, 1Password, etc). For me it’s all about privacy and security, I have a whole lot more questions about how data is stored at rest at TrainerRoad, I’m hoping there isn’t some S2 bucket in AWS holding our data unencrypted. I’ve not explored TR’s GDPR compliance. Another cool thing, assuming the data is secure and private at rest would be a tick box that blocks support from viewing the personal data which could be unticked if a support case was opened and required access to the data. I know, wishful thinking, but why not forward think privacy and security? It’s good for everyone.