Security & Compliance
Enterprise-grade security controls to protect your data and meet compliance requirements.
User Roles & Permissions
Fine-grained access control with predefined roles: Owner, Admin, Manager, Staff. Customize permissions per feature area.
Audit Logging
Comprehensive logging of all user actions. Track who did what, when, and from where. Exportable for compliance reviews.
Two-Factor Authentication
Enhanced security for admin and tenant portal logins. TOTP-based 2FA with app or SMS verification.
Document Management
Secure document storage with encryption, expiration tracking, and retention policies.
Role-Based Access Control
Owner
Full access to all features, settings, and reports. Can manage users and billing.
Admin
Full operational access. Cannot modify billing or owner settings.
Manager
Day-to-day operations, tenant management, reports. Limited settings access.
Staff
Basic operations only. No access to financials or sensitive reports.
Comprehensive Audit Trail
Every action logged for compliance and accountability.
User Actions
Login, logout, password changes, and permission updates
Financial Activity
Payments, refunds, adjustments, and invoice changes
Tenant Records
Profile edits, move-ins, move-outs, and unit changes
System Changes
Settings changes, rate updates, and configuration edits
Audit Log Entry Example
| Timestamp | User | Action | Details | IP Address |
|---|---|---|---|---|
| 2024-01-15 14:32:18 | john.manager | payment.process | Payment $125.00 for Tenant #1042 | 192.168.1.100 |
| 2024-01-15 14:28:05 | sarah.admin | tenant.update | Updated phone for Tenant #1035 | 192.168.1.105 |
| 2024-01-15 14:15:00 | system | autopay.charge | Auto-charged 15 tenants successfully | - |
Document Management
Secure handling of sensitive documents:
- Encryption: All documents encrypted at rest
- Expiration Tracking: Alert when IDs or insurance expire
- Versioning: Keep history of document revisions
- Retention Policies: Auto-delete after configured period
- Access Controls: Role-based document visibility
Security Alerts
Real-time notifications for security events:
- Failed login attempts
- Password reset requests
- New device logins
- Permission changes
- Unusual activity patterns
- After-hours gate access (with PTI)
Compliance & Data Protection
Encryption
TLS 1.3 in transit, AES-256 at rest. All sensitive data encrypted.
PCI Compliance
Payment data handled by PCI-compliant payment processors.
Data Backup
Daily automated backups with point-in-time recovery.
Ready for Enterprise-Grade Security?
See security and compliance features in action.