5-minute mailchimp task for Security - check your account users and integrations

When was the last time you checked who has access to your Mailchimp account. In fact have you EVER checked?

I undertake audits of a lot of Mailchimp accounts and do a thorough check of many aspects. That always includes looking at account users who have access to contact data, billing info and the ability to do various things within the account.

And I’ve lost count of the number of times I’ve shown the client who has access to their Mailchimp and they’ve realised that e.g. past web developers, former employees or people from so long ago no-one knows who they are still have access.

And in several occasions, there had been, let’s say, “difficulties” with those people and it’s not just inappropriate, but potentially risky.

It goes without saying that you are obligated to retain the confidentiality of people on your mailing list. You’ve hopefully got a Privacy Policy and asked their consent. But you’ve perhaps not checked lately who can actually see their details in your account?

That also extends to integrations - what other platforms and apps have you connected to Mailchimp in the past then stopped using? Did you ever remove the integration? You need to check this too.

So here’s a quick video showing you how to do it (sorry for the horrid lighting and post-gym hair!). It will take you 5 minutes. If you need help or discover something unexpected, get in touch.