Investor Portal for Trust Companies — Case Study | TechConcepts

Investor Portal

TrustView: Investor Portal for Trust Companies

A multi-tenant SaaS platform that gives trust companies full visibility over investor operations — from request intake to document delivery, with every action auditable.

Problem

Trust companies managing UHNW clients rely on email, shared drives, and spreadsheets to handle investor requests. A trustee asks for a quarterly report — the request gets lost in an inbox. Documents are shared without watermarks. Nobody knows who downloaded what. Compliance reviews happen retroactively, if at all. The operations team of 10 spends more time coordinating than executing.

Solution

TrustView replaces the entire chain with a single platform. Investors see a branded portal with their portfolio, documents, and notifications. The backoffice team manages requests through a shared queue with role-based access. Every document is watermarked on download. Every action — upload, approval, view, impersonation — is logged in an immutable audit trail. The managing director monitors everything from a single dashboard.

Results

4.2h Avg Request Time

100% Audit Coverage

0 Lost Requests

10 Team Members

Request Lifecycle: From Investor to Execution

A trustee requests a quarterly valuation report. Here is how it flows through the team:

Steps 1-2

Request & Queue

Investor → Ops

Investor submits request via portal. Auto-assigned to the right team member based on entity.

Steps 3-4

Import & Validate

Ops Admin → Analyst

Upload custodian positions (CSV). Analyst reconciles holdings, enters NAV, marks ready for review.

Step 5

MD Approval

Managing Director

Reviews valuation dashboard. Checks figures against prior quarter. One-click approve.

Steps 6-7

Deliver & Close

Client Manager

Uploads PDF, sets visibility by role. Sends notification. Investor downloads watermarked copy.

Real Request Timeline — 4.5 Hours

09:15

Investor requests Q1 valuation report

Portal submission, auto-assigned to Sarah K.

11:00

Ops imports custodian data

14 holdings from UBS CSV, 0 validation errors

14:20

Analyst validates and enters NAV

CHF 48.2M — PE mark-to-market adjustment applied

15:45

MD approves valuation

One-click approval, figures published to portal

16:25

Client manager verifies via impersonation

3-minute check — dashboard and documents correct

16:30

Report uploaded, notification sent

Email + portal badge, magic link for one-click login

16:42

Investor downloads watermarked report

Request closed. Full audit trail preserved.

Platform Capabilities

Built for regulated trust operations with multi-tenant isolation

Role-Based Access

6 staff roles (MD, Analyst, Client Manager, Compliance, Ops, IT Admin) with granular permissions per module. Investors see only their own entities.

PDF Watermarking

Every document downloaded is automatically watermarked with the beneficiary's name server-side. Original files stay clean. Leak source is always traceable.

Impersonation Mode

Staff can "view as" any beneficiary to verify their experience before sending notifications. All impersonation sessions are logged in the audit trail.

Immutable Audit Log

Every action logged: uploads, downloads, approvals, logins, impersonations. Filterable by entity, user, action type. CSV export for regulators.

Multi-Tenant Isolation

Row-level security in PostgreSQL ensures absolute data separation. Each trust company is a workspace with its own branding, domain, and user base.

Magic Link Auth

No passwords to manage. Investors receive a one-click magic link via email. Reduces support tickets and eliminates credential-related security risks.

Tech Stack

● Frontend: Next.js 16, React 19, Tailwind CSS v4, shadcn/ui
● Backend: Supabase (PostgreSQL + Auth + Storage), Row-Level Security
● Deployment: Google Cloud Run (Docker, europe-west1), Cloudflare CDN
● Mobile: Native iOS app (Swift 6, Supabase-Swift SDK, Face ID)

Lessons Learned

✓ Row-level security eliminates the need for application-layer tenant filtering. The database enforces isolation — one less thing to get wrong.
✓ Magic link auth removed the #1 support request from trust company clients: password resets. Investor satisfaction improved immediately.
✓ Impersonation mode caught 3 visibility bugs before launch that unit tests missed. Seeing what the investor sees is the only real QA for a portal.

Product Walkthrough

View Slide Deck

Live Demo

View TrustView Demo

Need an investor portal?

We build white-labeled portals for trust companies, family offices, and fund managers.