All Collections
Client Requests
Client Request Settings and Security
Client Request Settings and Security

Adjust your Client Request sending settings, customize it for your practice and learn more about Client Request security.

Lachlan Macindoe avatar
Written by Lachlan Macindoe
Updated over a week ago

Make sure you customize your client's experience of Client Requests by adding your logo to the client portal, check where you can adjust your sending settings and learn more about Client Request security.


Add your logo to your client requests

When your clients access their unique Karbon Client Portal, you can display your company logo. So firstly, add your logo so that it’s ready to go. Do this from Settings > Client Portal > upload a new logo under Theming.

Choose what time Client Requests are sent

You can choose what time of day your client request emails and reminders will auto-send to your clients. Navigate to Settings > Client Portal > Auto-Sending.

From here, you will be able to choose what time zone of the day these will send automatically. Navigate to Settings > Account Settings. This is a company-wide setting, so will affect all client requests across your team.

Client Portal Login Page

If you are on the Business or Enterprise Plan, your clients will have access to log in to their Client Portal and get a full view and history of their requests, documents and communication.

They will see up to 100 work items that have open requests for them to complete as well as view the last 100 completed work items they had client requests on.

Your clients can access their login via the magic link in the email sent to them, once on that Client Portal they can click on log in on the left-hand side, or, you can share the URL provided in your Client Portal settings.

Clients can bookmark that link or if you’d prefer, you can add it to your website for frictionless access.

Your client can then create an account using the email address that the client requests were sent to and their preferred password.

Client Request Security

Client Requests is a secure way to share and receive information from your clients - it is significantly more secure than simply communicating via email, and how most firms interact with their clients.

Security measures include:

  • Karbon includes an option for Two Factor Authentication (2FA) for the Client Portal, providing an extra layer of data protection. The 2FA function is enforced only when clients login directly to the Client Portal. A code is not required when clients use Magic Link to view Client Requests

  • Access to the Client Portal is available only via a dedicated device. The Client Request emails that are sent out to your Clients can only be accessed on the remembered device, if they are on a new device it will require a new Magic Link that can only be sent to the recognized email address of the Client.

  • The Client Request app is powered by Secure Sockets Layer (SSL), which means that any connection is secure and any data entered is encrypted and safely shared

  • The unique URL for each set of Client Requests is located in your Client Portal and is based on your account's unique ID

  • Karbon tracks who accesses that URL, and from what devices. Each new device that tries to access the URL will require a new Magic Link to be sent to the email address of the Client

  • Your clients can load files and comments and complete the tasks, all from the secure portal accessible at that URL

  • The client will be locked out once the related work item is marked as Complete, to preserve your audit trail

  • All your information in Karbon, including Client Request data, is encrypted in transit and stored securely using enterprise-grade cloud servers, encrypted data storage and highly scalable databases. The portal is a 256-bit encrypted site

  • Karbon undergoes regular security reviews to ensure the protection of customer data and documents

  • Only an active Karbon contact can create a login for the Client Portal

With security at the core of Karbon, you will have complete confidence that your data is safe and private at all times.

Security of Client Request documents

The documents that your clients upload via client requests are not able to be downloaded via the link to Karbon that you have provided to your client. This ensures the documents are only accessible inside your Karbon account.

Karbon undergoes regular security reviews to ensure the protection of customer data and documents.

Security of Email Provider Best Practices

Please keep in mind, as Karbon sits on top of your email provider and does not replace the email security of your email provider we suggest that you keep your security of emails at top of mind. As the vulnerability of your emails lives in your email provider and you must protect your security at this level. Please ensure there is a process in place for your firm's email security.

For further details on Client Portal security, please visit this article.

Suggested articles:

Did this answer your question?