Use least-privilege access
Give each staff member the access needed for their role and no more. Review membership when responsibilities change, and reassign active cases, tasks, and reminders before removing a departing user. A shared login makes ownership and auditability weaker; use individual accounts for every team member.Keep staff and client surfaces separate
Use dashboard features such as internal notes, working drafts, and staff tasks for team-only work. Use the client portal, questionnaire invitations, document shares, and payment requests only for information the firm has intentionally made client-facing. Review visibility before you send a link.Protect portal and external credentials
Staff sign in to government portals themselves before using a supported extension workflow. Do not store, send, or ask clients to send government portal passwords through VisaFlo chat, notes, or support messages. The same rule applies to API keys, access tokens, and private signing links.Configure branding deliberately
