Managing access to your Trust Portal content

Learn how to review, approve, and track access requests to your protected Trust Center content.

What are Access Requests?

When you mark content as ON REQUEST or CLIENT, visitors to your Trust Portal can see it's available but cannot view or download it. Instead, they must request access from you.

Access requests allow you to:

Control who sees sensitive documents (SOC 2 reports, penetration tests, etc.)
Understand why someone needs access before granting it
Set time-limited access that expires automatically
Maintain an audit trail of who accessed what and when

How Access Requests Work

The Request Flow

1. Visitor sees ON_REQUEST document on your Trust Portal
                    ↓
2. Visitor clicks "Request Access" and fills out form
                    ↓
3. You receive notification in Trust Center
                    ↓
4. You review request details and decide
                    ↓
5a. APPROVE → Visitor gets email with secure access link
    OR
5b. DENY → Visitor gets notification that access was not granted

What Information Requesters Provide

When someone requests access, they submit:

Field	Required	Purpose
First Name	Yes	Identify the individual
Last Name	Yes	Identify the individual
Work Email	Yes	Verify business context, send access link
Company Name	Yes	Understand business relationship
Job Title	No	Assess authority/relevance
Relationship	Yes	Dropdown: Prospect, Customer, Partner, Auditor, Other
Reason for Access	Yes	Free text explaining why they need the documents
Point of Contact	No	Who is their contact within your organization
Documents Requested	Auto-filled	Which documents they want to access

Viewing Access Requests

Access the Requests Dashboard

Navigate to Trust Center → Access Requests
You'll see all requests organized by status:
- Pending - Awaiting your review
- Approved - Access granted (active or expired)
- Denied - Access not grantedViewing Access Requests

Reviewing a Request

Step-by-Step Review Process

Click on Accept on a pending request to see full details
Review the information provided:
- Who is requesting (name, email, company, job title)
- Why they need access (their stated reason)
- What they want to access (list of documents)
- When they submitted the request
Verify the requester if needed:
- Check if the email domain matches their company
- Look up the company to verify legitimacy
- Cross-reference with your CRM or ongoing deals
- Check if they're already a client in Ceeyu
Assess the request:
- Is the reason legitimate and specific?
- Do they have a valid business need?
- Is the relationship appropriate for the documents requested?
- Do you need additional information before deciding?Approving Access Requests

When to Approve

✅ Approve access when:

The requester is a legitimate prospect in an active sales cycle
They're an existing client or partner with valid need
They're an auditor or compliance professional conducting due diligence
The reason is specific and relates to a real business process
The email domain matches a recognized company
You've verified their identity through other channels

How to Approve

Click Accept on the pending request
Set access duration
- Choose a preset: 1 week, 4 weeks
Click Accept Request

What happens next:

Requester receives an email with a secure access link
They can view/download the approved documents until expiration
The request moves to "Approved" status in your dashboard
Access activity is logged in analytics

Denying Access Requests

When to Deny

❌ Deny access when:

The email domain is suspicious (free email like Gmail for corporate docs)
The reason is vague or generic ("just want to see it")
The requester's company is a known competitor
The relationship doesn't justify access to sensitive docs
You cannot verify the requester's identity
The request seems automated or spam-like
You need more information and they haven't responded to follow-up

How to Deny

Click Reject on the pending request
Click Confirm Denial