Your Lili password is one of the most important ways to protect your money and information. Pairing a strong, unique password with our security tools helps keep your account safe from unauthorized access.

Creating a strong password

When you create or update your Lili password, we recommend that you:

• Use a long password or passphrase (for example, a string of several unrelated words) rather than a simple word or short phrase.
• Include a mix of uppercase and lowercase letters, numbers, and special characters where possible.
• Avoid using personal details that are easy to guess, such as your name, birthday, business name, or common words like “password” or “123456.”
• Use a different password for every service, and never reuse your Lili password on other websites or apps.

Consider using a reputable password manager to securely generate and store strong, unique passwords. This way, you only need to remember one master password and don’t have to reuse simple passwords across multiple accounts.

To learn how to change your password in the Lili app, see What should I do if I forgot my password or if I want to change it?

Turn on all available security features

In addition to a strong password, it’s important to use Lili’s security tools wherever they’re available:

• Keep your phone number up to date so you can receive one‑time verification codes when prompted.
• Complete any multi‑factor authentication (MFA) steps we request, such as one‑time passwords (OTPs) sent via SMS for certain online transactions or sign‑ins.
• Enable device‑level security on any device you use to access Lili (for example, strong device passcodes, Touch ID/Face ID, and automatic screen lock).

Together, these steps add extra layers of protection so that even if someone learns your password, it’s harder for them to access your account.

You can also check out our blog post on how to keep your account secured.
 

Protecting your password and one‑time codes

To help keep your Lili account safe:

• Never share your password or one‑time verification codes with anyone, including anyone claiming to be from Lili.
• Lili agents will never ask you for your full password, full social security number, full debit card number, or a one‑time code sent to your phone or email.
• Avoid entering your Lili password on shared or public computers whenever possible.
• Do not click on suspicious links or open unexpected attachments that ask you to “verify” your Lili account. When in doubt, go directly to the Lili app or website instead of using a link in a message.

If you receive a call, text, email, or message that doesn’t seem right, do not share any sensitive information. Contact Lili using the methods listed in How do I contact the Lili team? and we’ll help you confirm whether a request is legitimate.
 

What to do if you think your password is compromised

If you suspect that someone else may know your Lili password, or you notice unusual activity:

1. Change your Lili password immediately. You can do this from the Lili app under Menu > Settings > Account Security > Change Password, or by using the “I forgot my password” option on the login screen if you can’t sign in.
2. Review your recent transactions and report any charges or transfers you do not recognize right away.
3. Secure your email and other important accounts (for example, update passwords, enable MFA) if you reused the same password anywhere else.
4. Contact the Lili team (see: How do I contact the Lili team?) so we can review your account, help you secure it, and walk you through any additional steps if needed.

Security for owners and team members

If you’ve granted access to your Lili account to team members or your accountant using Roles & Permissions, they should also:

• Use strong, unique passwords for their own logins.
• Enable all available security features on their devices.
• Follow the same guidance on not sharing passwords or one‑time codes and reporting anything suspicious.

Strong passwords and secure behavior from everyone with access to your Lili account help keep your business and funds protected.

Lili is a financial technology company, not a bank. Banking services are provided by Sunrise Banks, N.A., Member FDIC. The Lili Visa® Debit Card is issued by Sunrise Banks, N.A., Member FDIC, pursuant to a license from Visa U.S.A., Inc. The Card may be used everywhere Visa debit cards are accepted. 

Wire Transfer services are provided by Column Bank N.A., Member FDIC. All wires are subject to acceptance criteria and risk-based review and may be rejected at the sole discretion of Column Bank N. A. or Lili App Inc.