Why Shared Vendor Accounts Are Not Supported on Brightflag

🚫 Brightflag accounts are for individual use only. We do not support or recommend the use of shared user accounts for legal vendors. This is not just a best practice — it’s a critical security requirement.

⚠️ Risks of Shared Accounts

Using a single login for multiple people in your firm introduces serious problems, including:

• Security Breaches: Shared logins make it impossible to trace actions back to specific users. If sensitive client data is accessed or misused, accountability is lost.

• Session Hijacking: If another person logs in using the same credentials while you're working, you will be silently logged out without any visible notification.

  • Any action you take afterward — uploading invoices, updating matters, submit accruals — will not register.

  • You may think you're working, but you're actually logged out behind the scenes.

• Audit Trail Issues: Brightflag relies on user-specific activity to maintain accurate audit logs. Shared accounts disrupt this and compromise compliance.

• Client Data Liability: When using shared accounts, your client’s data is at risk, and your firm may be in violation of data protection agreements or privacy laws.

🔐 Note: Many Brightflag clients require their legal vendors to maintain individual user access to comply with their internal and external security policies.

❌ Shared Accounts Violate Brightflag's Terms of Use

We’ve seen some large firms create a single Brightflag login and distribute it across their teams. This is a direct violation of our Terms & Conditions and exposes your client data to:

• Unauthorized access

• Data integrity issues

• Loss of trust from your clients

⚠️ Warning: If Brightflag detects shared account usage, we may take enforcement actions, which can include suspending access or notifying clients.

✅ How to Add Individual Accounts for Your Team

To support secure and flexible team access, Vendor Admins can now create additional Vendor Admin users directly from within Brightflag.

Steps to Add New Vendor Admins

1. Log in with your Vendor Admin account.

2. Navigate to the Admin Panel.

3. Select “Add New Admin” and enter the user’s details.

4. Assign appropriate roles and save.

📘 Tip: For step-by-step instructions, check out our guide: Vendor Admins Can Create New Vendor Admins.

✅ Every Vendor User Should Have Their Own Account

Creating individual accounts ensures:

• Secure, traceable access

• Accurate task attribution

• Better support from Brightflag if issues arise

• Compliance with your clients’ data protection policies

If you need help creating or managing vendor accounts, contact Brightflag Support or refer to our Vendor Management Help Articles.