Mobile App Authentication
Getting into the app is quick. Your first login takes a minute to set up — after that, a PIN or biometric check is all it takes to get back in.
Your first login
- 1 Tap Log In on the welcome screen. An embedded browser opens — the same login experience as the web platform.
- 2 Enter your email address and password.
- 3 Complete your 2FA verification via the SMS sent to your registered mobile number.
- 4 Create a 4-digit PIN — you'll use this for all future logins.
- 5 You'll land on your dashboard. From Account Settings, you can also enable Face ID or fingerprint login.
Already have a pay.com.au account? Use your existing email, password, and 2FA — the same credentials you use on the web platform. No separate registration needed.
Returning to the app
After your first login, you won't need to enter your email and password every time. Here's what to expect:
| Situation | What's required |
|---|---|
| App reopened after being backgrounded | PIN or biometric check |
| Inactive for more than 3 minutes | PIN or biometric check |
| Not logged in for more than 90 days | Full re-authentication — email, password, and 2FA |
Things to know
2FA goes to your registered mobile number If the number registered to your account is on a different device to the one you're logging in on, you'll need access to that device to receive the code. To update your registered number, log in to the web platform and go to Account Settings.
Still in onboarding? If your account setup isn't complete, your dashboard may specific messages — such as ID Verification Required, Pending Email Verification, or Pending Onboarding. Complete these steps on the web platform at app.pay.com.au to fully activate your account.
Common issues
I can't see the login button
If the login button isn't visible, you're likely already authenticated. The next time you open the app you'll be prompted to enter your PIN or complete a biometric check — not log in from scratch.
I'm not receiving my 2FA SMS
Check that the mobile number on your pay.com.au account matches the device you're using. If you've recently changed numbers, update it via Account Settings on the web platform before trying again. If the issue continues, contact our support team.
I've been asked to log in again even though I recently used the app
Authentication tokens last for 90 days. After this period expires, a full re-login — email, password, and 2FA — is required regardless of recent activity. This is a security requirement and is expected behaviour.
Need help? Contact our support team If you're locked out or can't get past the login screen, reach out and we'll get it sorted.