V7.49.0 – Strengthened Admin Security Controls
Learn about all the details of all our recent CRM updates here.
Released Date - 9 July 2025
This release focuses on reinforcing security at the administrative level, safeguarding sensitive data, reducing risk, and giving brokers greater assurance. With smarter alerts and flexible access settings, maintaining security is now easier and more reliable.
Key Function Highlights
Auto Logout Configuration: Set custom logout periods to balance workflow needs with stronger account security and protection against unattended sessions.
Bulk Import for Blacklisted Users: Upload blacklisted accounts in batches to save time and reduce manual work.
Smarter Suspicious Login Alerts: Choose ipapi or MaxMind as your IP geolocation service; alerts will trigger only when both the "login city" differs and the "device details" change, improving accuracy and reducing false positives.
Referral Tree Access: Admins can view the overall referral structure but cannot access client details outside their assigned permissions, ensuring compliance with data visibility rules.
Sensitive Client Tiers: Client tiers can be flagged as sensitive to restrict unauthorized access, keeping confidential classifications protected.
1) Auto Logout Configuration
You can now set custom logout periods to balance workflow needs with stronger account security and protection against unattended sessions.
To do so, follow these steps:
2) Bulk Import for Blacklisted Users
You can now upload blacklisted accounts in batches to save time and reduce manual work.
To do so, follow these steps:
Batch Operation
If there's any error detected in your file, it will be displayed under "Error".
You will need to make the necessary amendments before importing the file again.
If there are no errors, click "Confirm" to proceed with the batch import.
Once you have confirmed your action, the users will be blacklisted.
3) Smarter Suspicious Login Alerts
A) Suspicious Login Prompt Logic Change
Previously, suspicious login prompts were triggered whenever the login city differed from the previous login.
Now, alerts are triggered only when both of the following conditions are met:
Remote Login Detection: The city of the current login IP is different from the city of the previous login.
Device Change Detection: The current device’s details (such as browser or device type) differ from the device used in the previous login.
This ensures that alerts are sent only for meaningful anomalies, reducing false positives while maintaining security.
B) IP Source
For detecting the city of a login IP, you can choose your preferred IP source:
ipapi
maxmind
To do so, follow these steps:
C) System Logs Updated
Client and Admin Login Logs now include a new column, “Login Device”, which displays both the device details and device ID. This enhancement enables better tracking and monitoring of login activity.

4) Data Permissions Controls
A) Referral Tree Access
If you have configured data permissions for your admins, they can still view the full referral tree.
However, when they click the "Details" icon for a client outside their assigned permissions, an error message will appear stating that they do not have the required access to view the client’s information.
B) Sensitive Client Tiers
Client tiers can be flagged as sensitive to restrict unauthorized access, keeping confidential classifications protected.
To do so, follow these steps:
Last updated