All data transmissions are protected via 256-bit financial-grade encryption. The lock icon in the browser indicates that your data is fully secure while in transit over the internet.

Each Workzone user must log in with their email address and a strong password. When you enter your password to log into Workzone, your password is encrypted as it travels across the internet, so it cannot be intercepted.

These settings can be found for Administrators on the Security page under the GLOBAL section in the settings (gear icon) in the top right for All Workspaces.

If a user who is logged into Workzone does not click any link or perform any new action on the server for 60 minutes (or one week depending on your site’s setting), the user’s session will time out and the user will be logged out of the system.

To change this interval to the 1 week logout time interval requires that you have not disabled user-specific cookies (more on that below). Additionally, only users that have checked the Remember me box on the log in page will have access to the extended 1 week logout interval.

For those organizations that require enhanced security measures to make unauthorized access of Workzone even more difficult, there are a number of additional security features within Workzone that may be enabled. These features are not enabled by default because they make Workzone more difficult/inconvenient to access by the authorized user.

When this security feature is enabled, if a user has not logged in to WorkZone within the past 30 days, the user account will be disabled, preventing log in. An Administrator (or a Manager with access to the account in the case of Reviewer or Partner users) will then be able to reactivate the account by editing the user under settings.

This feature requires that each user change his/her password every 90 days. When a user logs in after 90 days have passed since the password was last changed, the user will be taken to a screen to change his/her password.

When this feature is enabled, Workzone will not employ user-specific cookies to save login and password information for the user. The user will need to log in manually each time he/she accesses Workzone, whether logging in from the log-in page or when clicking on a Workzone link externally. Links will still take the user to the appropriate location once the user has logged in. When this feature is enabled, the login page will not include the Remember me checkbox or the Forgot your password? link.