Back to the Government and Nonprofits Resource Center 
Staying safe and protecting you and your organization across Meta technologies
Keeping people and partners safe across our technologies is one of the most important responsibilities we have, which is why we are constantly developing tools, technologies and teams to help detect and mitigate security risks. We recommend reviewing and implementing these tips and best practices to ensure you and your organization remain safe and secure across Meta technologies.
Stay Secure
- Review our safety and security best practices PDF and women's safety guide for best practices.
- Enable two-factor authentication. This is a security mechanism that requires you to enter a specific code when someone tries to access your account from an unrecognized device. Learn more about two-factor authentication across Facebook, Instagram, and WhatsApp.
- Use anti-virus software and enable automatic scanning of files in your antivirus software to help protect against malware.
- Regularly audit access to your business account to ensure that only legitimate, active users and ad accounts are connected, and that each has the correct level of access.
- Turn on login alerts and review previous sessions, so you can spot any suspicious activity.
- Turn on business notifications so you’re alerted to any changes to your Meta Business Manager account.
- Use Security Checkup and Privacy Checkup to help secure your account.
- Review and implement our Business Manager security best practices to ensure your organization is as secure as possible.
- Ensure eligible assets (Pages, Instagram accounts) are blue badge-verified on Facebook and/or Instagram.
- Share your verified accounts and communication methods with your followers. This makes it easier for people to identify legitimate interactions, helping to prevent scams.
- You can find additional tips for keeping your personal account secure.
Stay Alert
- Don't trust messages demanding money, offering gifts, or threatening to delete or ban your account. If you suspect that an email or direct message is a scam, don't open any links or attachments that you see.
- Meta representatives/support will never ask you for your password, payment details, or other sensitive information over chat or email.
- Notifications from Meta about the status of your account can be found in Business Support Home, and emails about your account will only come from email addresses that end in facebookmail.com, facebook.com, instagram.com, fb.com, meta.com, or metamail.com.
- Report suspicious messages you receive on Messenger, Instagram, or WhatsApp. You can find instructions on how to report messages on Messenger, Instagram, and WhatsApp.
- We believe that people use their voice and connect more freely when they don’t feel attacked. That’s why we don’t allow hate speech across our platforms. Learn more about our hate speech policy.
- We do not tolerate bullying and harassment across our platforms. For public figures, we remove attacks that are severe as well as certain attacks where public figures are directly tagged in the post or comment. Learn more about our policy.
Monitor
- Use the Meta Ad Library to see all ads that are running across Meta technologies. You can search by keyword to see ads about your organization that may be running.
- If you own a registered trademark, you can sign up for Brand Rights Protection to easily search for and report suspicious content and accounts across Facebook and Instagram.
Resolve
- Visit the Business Help Center to report content and accounts that infringe on your rights or impersonate you. You can also troubleshoot other issues such as policy violations, rejected ads, disabled accounts, payment failures and more.
- If you believe content is infringing your intellectual property rights, you can submit an IP report. The Intellectual Property Reporting Center helps expedite the reporting process by saving relevant account information and keeping your reporting history in one place.
