Overview
Access requests are a main component of streamlining access to a Trust Center. This article gives an overview of how an organization team can manage this process.
Note: This article focuses on manually approving/denying access requests. A CRM integration can automate this process and is available to our Advanced and Enterprise plans.
How customers submit an Access Request
From a customer's point of view. They will request access from one of a few areas of the Trust Center, either from the top banner (as seen below) or from specific items within the Trust Center.
Walk through the entire customer experience of requesting and gaining access in this article.
Where do Access Requests populate
All access requests that must be manually reviewed will be viewable on the Accounts tab under the Access Requests table as shown below. An organization's team will be able to approve or deny access requests from this section.
Members with the Admin, Questionnaire Manager, and Account Manager roles will receive an email notification, if that member's notifications are turned on.
All automated access request and NDA notification emails triggered by SafeBase will have a from address of notifications@safebase.co, unless you have already set up custom email branding. Regardless of which method you are using during this testing cycle, ensure these emails are allowed through any email security or quarantine tools to avoid delays.
After a request is approved or denied, future requests using that same email address will be ignored and not displayed in the Access Request Queue.
If that email needs to be used in a subsequent request (for example, in testing), please delete it from the Access Request History.
Table Breakdown
Company - Requester's Company
Requester - Requester's Name and Email
Relationship - Requester's relationships with Requestee
Products - Which Product(s) the users requested access to
Source - Location on the Trust Center where the requester clicked "Get access"
Date Requested - How long ago the individual requested access
To configure what information is shown in this table, please reference this help article.
Manually Denying an Access Request
Select the 
icon to Deny an Access Request.
When denying a request, there is an option to notify the requestor by email that their request was declined. If "Yes, please notify them", is selected, a customized response will be sent to the requester (ie. why their request was declined).
Manually Accepting an Access Request
Select the 
to approve an access request
Determine what the Account (Company) name in SafeBase should be. Suggested Account names will appear as well.
Account already exists in SafeBase
If the requester is associated with a company that already has an account within SafeBase, search for the company by name and select it to add the user to the existing account rather than creating a separate account.
If selecting an existing account, approve without adding any additional information.
SafeBase has an option to automatically approve access requests to accounts that already exist in SafeBase. Learn more about this feature here.
The account does not yet exist in SafeBase
For an account that does not yet exist in SafeBase, type the company name in the Account field and select Create new SafeBase account.
From here you will be presented with additional fields to review like NDA Provider, permission profile and review status.
Once the required fields have been reviewed, select Create account & approve request.
NOTE: If you have Slack integrated, you will also see access requests posted in the channel you choose. An example screenshot is below.
By default, only notifications for access requests that need manual approval will be sent to the Slack channel. If you have automatic approval settings turned on, you can choose to include notifications for automatically approved access requests. Go to Settings -> Accounts -> "Automatically approve access requests" -> choose "If request meets conditions -> set the toggle for "Send Slack notifications about automatically-approved access requests" to on.
Access Request History
To view declined requests and full access request history, select View History on the Accounts tab in the top right:
Press the 
icon to the right of the request in the table to delete it from the History.
Deleting an Access Request from the history will allow that email address to be used again in another Access Request, but it does not delete any existing Account Members or Accounts.