Notifications

An email digest of everything needing attention — compliance expiries, arrears, escalated tickets, tax deadlines — sent to each owner on the schedule you pick. Weekly digests go out on Monday mornings.

{['off', 'daily', 'weekly'].map(opt => )}

{withEmail.length === 0 ? No owner emails on file — add them under Owners :

{withEmail.map(o => save({ notifyRecipients: { ...recipients, [o.id]: e.target.checked } })} /> {(o.name || '?')[0]} {o.name} )}

} save({ notifyWarnDays: v })} /> save({ notifyCritDays: v })} /> {testState === 'sent' &&

{testMsg}

} {testState === 'err' &&

{testMsg}

}

Data retention

GDPR Article 5(1)(e) — personal data kept no longer than necessary. Tenant records auto-purge this many years after their last tenancy ends; deletion is blocked before the window closes.

save({ tenantArchive: v })} /> Kept indefinitely (compliance evidence) Append-only · never purged

{archived === null ? 'Counting archived tenants…' : archived + ' archived tenant' + (archived === 1 ? '' : 's') + ' on record · the purge check runs against the ' + years + '-year window before any deletion is allowed.'}

Integrations

Connections you control for this account. Link your bank feed and tax submission here — the platform-run services below are managed centrally.

YOUR CONNECTIONS

{bank === undefined ? … : bankLinked ? {(bank.institution_name || 'Bank') + ' linked'} : bank && bank.status === 'expired' ? Consent expired : Not connected} {s.hmrcConnected ? 'Sandbox linked' : 'Simulated'} {(s.notifyDigest || 'weekly') === 'off' ? 'Off' : 'On (' + (s.notifyDigest || 'weekly') + ')'} set under Notifications {isSuper ?

PLATFORM CENTRALLY MANAGED · SUPER-ADMIN

Active Active Active Active :

Document AI, secure storage, billing and email delivery are managed for you — nothing to configure.

}

Account & data

Where your data lives and how to get it out. Every read and write is scoped to this account at the database — not just in the interface.

{isSuper && {host} } {cap(account.property_cap)} properties · {cap(account.seat_cap)} seats · {cap(account.owner_cap)} owners {health &&

{health.detail}

{health.counts.length > 0 &&

{health.counts.map(c => {c.t} · {c.n === null ? '✕' : c.n})}

} } {isAdmin && !account.is_comp &&

DANGER ZONE

Delete this account

Permanently erase this account and every property, tenant, document and record in it. This can't be undone — export your data first if you might need it.

} {del && setDel(false)} onExport={() => { setDel(false); go && go('exports'); }} />} {isDeployer &&

SUPER-ADMINSwitch plantesting only

Flip your own account between tiers to preview what each unlocks — writes the same entitlements Stripe would, then reloads. Real customers change plans through Plans & billing.

{['starter', 'professional', 'portfolio'].map(t => { const cur = account.plan === t; return ; })}

}

e.stopPropagation()}> {step === 4 ?

✓

Account deleted

Everything has been permanently removed. Signing you out…

DELETE ACCOUNT · STEP {step} OF 3

{step === 1 ? 'This is permanent' : step === 2 ? 'What will be deleted' : 'Final confirmation'}

{err &&

{err}

} {step === 1 &&

⚠

You're about to permanently delete {account.name}. This removes the entire account for you and everyone on it — there is no undo, and PropMystro cannot recover it afterwards.

If you only want to stop being billed, cancel your plan in Plans & billing instead — that keeps your data in read-only.

Want a copy first?

} {step === 2 &&

Tick each box to confirm you understand. All of the following are erased immediately:

· Every property, tenancy, tenant & owner record · All certificates, documents & uploaded files · The full financial ledger, expenses, bank & tax data · Maintenance tickets, inspections & activity history

setAck(a => ({ ...a, irreversible: e.target.checked }))} />I understand this is permanent and cannot be undone. setAck(a => ({ ...a, data: e.target.checked }))} />I understand all my data will be erased, and I've exported anything I need. setAck(a => ({ ...a, team: e.target.checked }))} />I understand everyone on this account loses access immediately. } {step === 3 &&

Last step. To confirm, type your account name and the word DELETE.

Account name — {account.name} setName(e.target.value)} />

Type DELETE to confirm setPhrase(e.target.value)} />

{!nameOk && name &&

Name doesn't match.

} }

{step < 3 ? : }

}

Team & roles

Who has access to this account, and exactly what each role can do. Access levels are enforced at the database by row-level security — not just hidden in the interface.

{/* ---- members ---- */}

PEOPLE · {members ? members.length : '–'} OF {seatCap} SEAT{seatCap === 1 ? '' : 'S'}

{members === null ? : members.map(m =>

{(m.user_id === myId ? 'You' : (m.owner_key || 'M')).slice(0, 2).toUpperCase()}

{m.user_id === myId ? 'You' : (m.owner_key || 'Team member')}{m.status !== 'active' ? ' · ' + m.status : ''} {m.user_id === myId ? 'this is you' : 'member'}

{ROLE_LABEL[m.role] || m.role}

)}

{isAdmin ?

{err &&

{err}

} {invite &&

Invitation link (emailed automatically in production): {invite}

}

INVITE BY EMAIL setEmail(e.target.value)} /> ROLE

Only an account admin can invite teammates.

} {/* ---- editable matrix ---- */}

ROLE PERMISSIONS

{dirty && isAdmin && } {isAdmin && }

{isAdmin ? (editMode ? 'Click any cell to cycle None → Read → Own → Full. Changes save instantly. Edited cells are underlined; built-in defaults stay as the starting point.' : 'The current access model. Turn on Edit to tailor any role, or add a bespoke custom role.') : 'The access model for this account (view only — an admin can edit).'}

{PERM_ROLES.map(r => )} {customRoles.map(c => )} {PERM_ROWS.map(row => {PERM_ROLES.map(r => { const v = cellOf(r.key, row.area); const canEdit = editMode && isAdmin && r.key !== 'family_admin'; return ; })} {customRoles.map(c => { const v = c.perms[row.area] || 'none'; const canEdit = editMode && isAdmin; return ; })} )}

Access area	{r.label}	{editMode ? renameCustom(c.id, e.target.value)} /> : {c.label}} {editMode && }
{row.area}	cycleBuiltin(r.key, row.area) : undefined} title={canEdit ? 'Click to cycle' : (r.key === 'family_admin' ? 'Admin always has full access' : '')}>{cellLabel(v)}	cycleCustom(c.id, row.area) : undefined}>{cellLabel(v)}

Full read & write Read read only Own only their own records — no access {editMode && isAdmin && }

{PERM_ROLES.map(r =>

{r.label}{r.blurb}

)}

SUPER-ADMINvisible only to {SUPER_ADMINS.length} allowlisted accounts

Friends & comps

Give family & friends who are landlords free access to PropMystro — each gets their own private portfolio, billed to no one. They sign up normally first; then comp them here by the email they used. Comped accounts never expire and never see a payment prompt.

THEIR SIGN-UP EMAIL { setEmail(e.target.value); setLookup(null); }} onBlur={checkEmail} /> TIER

{lookup && (lookup.found ?

Found {lookup.email} — {lookup.account.is_comp ? 'already comped (' + lookup.account.plan + '). Granting again updates the tier.' : 'currently ' + lookup.account.plan + ' / ' + lookup.account.status + '. Ready to comp.'}

No account for {lookup.email} yet — ask them to sign up first, then comp them.

)} {COMP_TIERS.find(t => t.id === tier) &&

{COMP_TIERS.find(t => t.id === tier).blurb}

}

{err &&

{err}

}

COMPED ACCOUNTS

{comps === null ? : comps.length === 0 ?

No comped accounts yet. Grant your first one above.

{comps.map(c =>

{c.email || c.name || 'Account'} {c.name} · since {fmt(c.comped_at)}{c.comped_by ? ' · by ' + c.comped_by : ''}

)}

}

Settings

Notifications

Data retention

Integrations

Document filing

Account & data

Account deleted

{step === 1 ? 'This is permanent' : step === 2 ? 'What will be deleted' : 'Final confirmation'}

Team & roles

Friends & comps