Reset your password or fix login issues
Three flows here, depending on what's going wrong.
I forgot my password
- Go to interviewchamp.ai/auth
- Click Sign In
- Enter your email, then click Forgot password? under the password field
- Check your inbox — a reset link arrives within 1-2 minutes (subject: "Reset your InterviewChamp password")
- Click the link, set a new password (8+ chars, no other requirements)
- Log in with the new password
The reset link expires after 60 minutes. If you don't click it in time, request a fresh one.
I signed up with Google but want to use email/password too
You can't currently mix the two for the same account — Google-signin accounts don't have a password set. Two options:
- Keep using Google sign-in (recommended — no password to forget, MFA inherits from your Google account)
- Email a request to support asking us to convert the account to email/password. We'll set a temporary password and send it to your verified email; you reset to your own on first login.
My password isn't working
In order of likelihood:
- Caps Lock. The password field is masked — easy to miss.
- Typo in email. The error message is intentionally vague ("Invalid email or password") so an attacker can't enumerate accounts. Try
forgot password— if you get "No account found for this email" then your email is the issue. - Old password from a prior reset. Browser autofill remembers stale entries. Manually type the latest one.
- You signed up with Google. See the section above — there's no password to type.
I'm not getting the reset email
Check, in order:
- Spam / Promotions folder. Resend (our email provider) lands in Gmail's main inbox for most users but Promotions for some.
- Gmail filter rules. If you have a rule auto-archiving
noreply@*, the reset email skips inbox. - Wrong email. The error message will say "If an account exists, we sent a link" — that's intentional; we don't confirm or deny. If your email has a typo, no email gets sent.
- Resend down. Rare; check status at status.resend.com. If they're degraded, wait 5-10 minutes.
If none of the above works, Contact us with category Account or login and the email you signed up with. We'll send a reset link manually.
Two-factor authentication
Not currently available. We use JWT access tokens (15 min) + refresh tokens (7 days) with per-device session tracking — when you log in on a new device, all existing sessions stay valid; we just record the new device. Owner roles get unlimited concurrent devices; paid plans get 5; free gets 2.
If you want to kick out a stolen device: go to Settings → Account → Active devices → revoke. The revoked session can't refresh the next time it tries.
I deleted my account by accident
If it's been less than 7 days, email support with the account email. We do a soft-delete and can restore everything — resume, sessions, billing history.
After 7 days, the data is hard-deleted from our primary DB. Sentry/Resend may still have some traces for another 30 days under their TTLs, but we can't reconstruct an account from those.
Suspicious login from another location
Settings → Account → Active devices shows the IP, device label, and last-active timestamp for every session. If anything looks wrong:
- Revoke the suspicious session (kicks it out within 15 min, when its access token expires)
- Change your password (forces every session including yours to re-auth)
- Contact us with category Account or login if you want us to lock the account temporarily while you investigate
Common questions
Q: I never got the reset email. A: Check spam + Promotions folder first. Then verify the email you used at signup — if there's a typo, no email is sent (and we don't say so, intentionally). Last resort: Contact us with the email; we'll send manually.
Q: I signed up with Google — can I add a password? A: Yes — Settings → Password & Security → Set a password. We email a magic link; click it, set a password. After that you can log in either way.
Q: My password worked yesterday but doesn't today. A: Three checks: (1) Caps Lock, (2) browser autofill remembering the OLD password, (3) you reset it on another device and forgot. Use Forgot password link to confirm.
Q: The reset link in my email is broken / expired. A: Links expire in 60 minutes for security. Request a new one — old link becomes unusable the moment you generate a new one.
Q: How long is my session valid? A: Access token = 15 min, refresh token = 7 days. So you stay logged in continuously for 7 days; after 7 days of no activity, you log in fresh.
Q: I think someone got into my account. A: Three steps in this order: (1) Settings → Devices → "Sign out everywhere" (kills all sessions), (2) Change password, (3) Contact us with category "Account & Login" — we'll inspect logs for the suspicious access.
Q: Two-factor authentication / authenticator app support? A: Not yet. Roadmap. For now, password strength + device-cap policy + suspicious-login alerts are the layers.
Q: I'm locked out — too many failed attempts. A: We rate-limit login at 5 attempts per 15 min per email. After that, wait 15 min OR use Forgot password to reset. There's no permanent account lock.
Q: Can I delete my account permanently? A: Yes — Contact us with category "Delete my account." Per GDPR/CCPA we process within 30 days. Paid plans need to be cancelled first; transcripts + AI answers are purged.
Q: I closed my account but want it back. A: If less than 7 days since deletion, Contact us — we soft-delete first, so we can restore. After 7 days the data is hard-deleted.
Still stuck?
The Contact us tab above with category "Account & Login" is the fastest path. Real replies, real human (the founder reads every message), usually within a few hours.
Video walkthrough
Coming soon.
Still stuck?
Sign in and message the founder directly from the Help & Feedback tab. Every reply comes from a real person, usually within a few hours.
Contact us