top of page
< Back
The Digital Update Cover Image.png

How To Balance Security & Collaboration

January 27, 2026

When working together online, sometimes sharing accounts and login information is a must, but how can you do this securely and effortlessly? Here are some ideas…

It's your weekly dose of clarity and insight on all things tech & business from Dream in Digital! Each week, I'm here to share my thoughts to help you make the most of today's technology and build a business that genuinely supports the life you want to live.

This Week’s Core Focus:

Secure Platform Access & Collaboration

One of the age old conundrums while working in today’s online, cloud-based, world is how to balance team collaboration and security. When everything is online, multiple people often need access to the same platforms, tools, and accounts, but this often leads to poor account security methods and leaves your organization vulnerable to hacks and mishaps. Unfortunately, this issue doesn’t come with a one-size-fits-all solution, so let’s break down some of the core security measures, and define the best practices in some common security vs. collaboration scenarios.


  1. Individual Accounts (The Gold Standard): Whenever a platform allows it, give each team member their own login (that’s tied to their work email). This is the cleanest way to track user history, and it ensures you can instantly revoke access for a specific person without affecting the rest of the team.


  2. The "Email Group" Strategy: When individual invites aren't practical—like when a client needs to grant access to a large team—use a single group alias (e.g., team@yourcompany.com). This keeps the client’s dashboard clean while ensuring the invitation reaches everyone tied to that email group.


  3. The Centralized Vault: Never share passwords via text or email! Use a dedicated platform like 1Password, LastPass, or Passwd to store group credentials in a secure "vault." Your team logs in with their individual work emails to access the shared password from the secure environment, keeping your "Master Key" safe and your workflow frictionless.


Note: Notice how I never said to directly share login information!?! Sending passwords via text or email is an easy way to get hacked or lose control of your accounts. If you aren't ready for a dedicated vault, a Master Google Sheet can act as a temporary transition. However, it is restrictive: it lacks user history tracking, granular password permissions, and the high-level encryption of a professional platform. For a business built to scale and give you peace of mind, a Third-Party Password Manager is truly the best solution.


Tech Tip of the Week:

The New Team Member Setup

The Problem: You’ve hired a new team member and need to get them secure access to both internal tools and client platforms without creating a bottleneck or compromising security.


The Solution:


Step 1: Create their company email in the Google Workspace Admin Console.


Step 2: Add that email to your internal Email Group (e.g., team@yourcompany.com).


Step 3: Have the client invite that Group Email to their platform.


Step 4: Accept the invite and save the credentials in your Third-Party Password Manager (or Master Google Sheet).


Step 5: Share the vault access link with your new team member’s work email.


Note: When sharing login credentials for an account with a team member, you may run into a Two-Factor Authentication (2FA) issue. While you can manually text a 2FA code to a team member, it’s best to set up an Authenticator App (like Google Authenticator) for shared accounts. Most professional Third-Party Password Managers allow you to save the "Secret Key" directly in the vault. This way, both the login and the rolling 2FA code are available to your team in one secure place—no middleman required.


How This Helps: This setup provides instant, secure access, without you ever "handing over" a raw password. Your team member is able to get to work immediately, and your client’s data remains protected within your controlled environment.


Bonus Tip: This isn't just about onboarding—it’s about the "clean exit." If a consultant finishes a project or a team member moves on, simply deleting their company email account revokes their access to everything at once. The rest of your team keeps working, and your security remains airtight. 🔒


Quote of the Week:

* We have two this week! *

“Cybersecurity is much more than a matter of IT — it’s a business imperative."

— Stéphane Nappo, Global CISO, Groupe SEB

--

“Complexity is the enemy of execution."

— Tony Robbins

A Question for You:

Be honest: how often are you giving or gaining platform access by emailing or texting login credentials?

If this is you, don’t panic. Take the steps you just learned about to manage security & collaboration the right way.

P.S. I’m always happy to help, just send me a message!

Until next week,

 

Sam Martyn

Founder & Owner

Dream in Digital

dreamindigital.io

Let's Chat! ➡️

Subscribe to Our Newsletter

Don’t miss out on the latest trends and strategies in the world of design and technology for business. Subscribe to Dream in Digital and receive expert advice, industry updates, and exclusive content straight to your inbox.

Thanks for submitting!

  • LinkedIn
  • Facebook

Copyright 2024. Dream in Digital. All rights reserved. Privacy Policy.

bottom of page