Could we please move away from the Authy only 2FA implementation currently used and provide standard TOTP and QR codes?

This would work much better for people who already have a stack of 2FA accounts in other solutions, remove reliance on a single application, fix issues with support (eg. Windows Phone), remove the need for a phone number (important for younger users I'd imagine) and generally increase flexibility and usability of 2FA for everyone by not locking us into a proprietary implementation.

It would be really nice to use a usb device for 2auth (something like the yubikeys).

Also provide other options for 2FA apps not just Authy

SMS as 2FA is well known to be the least secure of the methods available but still a better option than no 2FA at all, but I suggest an option to disable it as a fallback after having enabled Authy to lessen the security risks to the user account. You could learn from others mistakes such as Reddit's: https://arstechnica.com/information-technology/2018/08/password-breach-teaches-reddit-that-yes-phone-based-2fa-is-that-bad/

In https://help.twitch.tv/s/article/two-factor-authentication?language=en_US#Emotes?tt_content=two_factor_emote_rewards&tt_medium=notification_center it says that "When you set up Two-Factor Authentication on your account, an Authy account is automatically created for you even if you choose to actively use an alternative authentication app. This means you can fill out Authy’s Phone Change Form and recover access to your account." I don't need you creating an Authy account behind my back. You have to give us the option to undo this.

Please Fix 2 fa so it works with all phones. I am currently having to find a work around because MY cell carrier is NOT supported. it is preventing me from getting my affiliate that is B.S. There should be another option to authenticate other than cell phone OR your system should just send a code out to what ever # i put in even if it is not on some list. this is crazy as my Number works for every other site on internet!

I understand Twitch has recently allowed people to use other apps for means of authentication, but please allow users to use U2F/FIDO authentication, this is not only more secure but also very reliable. Having a U2F as primary with a TOTP as a backup is in my opinion the best method of security, given that Affiliate/Partner accounts hold alot of personal Tax information, I feel this fits more as it's such sensitive information.

It is so hard to sign in when I do not have a cell phone number for this authy app anymore. Please change this for ppl. This is make it so difficult to stream now. Please go back to the old twitch where I can sign in with just my email please!

I already have 2FA. I do not want emails confirming a login, especially if it's from a known location. Please add an Unsubscribe option for this notice.

Requiring users to enter some code via sms every 30-days is just stupidity disguised as security theatre. These codes do nothing to further protect our data at-rest, nor do they validate identity. It's just another unnecessary hoop to jump through. If it wasn't a meaningless, pointless, futile exercise, you wouldn't have added a 30-day option to not-validate - you'd be validating with every new browser instance. We don't need another TSA in our lives.

Log IPs of all attempted logins to an account. This way we can report suspicious behavior to you and to authorities/banks when it occurs.

Reason being, I have received multiple 2FA codes on my phone and have no way to report these unauthorized attempts to access my account. I have changed my PW and am still receiving these codes. I have ran two separate virus checkers and come back empty from both.

Thank you.

when you look in the privacy settings in your account, you can see the full phone number for your 2FA. Can this be blocked? When changing and entering into privacy, pw and 2fa is enabled again. amazon does this and I feel that they are taking our privacy seriously. 2FA just doesn't do it anymore, esp if you can bypass it the first time

Every time I put in the code that you sent me it says that it’s wrong and I’m getting pretty annoyed. Please send me the right code.

Maybe a personal opinion but having to search the country code manually by scrolling through the list box is not very intuitive. I would like to suggest have a list of countries followed by their dial code rather than the dial number(country code)

Also the ability to search by text would probably help for lazy people like me