Two-factor authentication (2FA) is now available in UpperBee: Why you should activate It

See all articles

May 7, 2025  |  Client Success, Gestion Immobilière, Logiciel de gestion, Property Management, Security, Software  |  Manager

Protecting our clients’ data isn’t just a matter of intent—it’s backed by concrete, audited, and recognized actions. After achieving SOC 2 Type 2 certification, UpperBee continues to strengthen its cybersecurity strategy with features that meet your everyday needs. Two-Factor Authentication (2FA) is now available to all users: property managers, employees, administrators, and residents.

This new security option is not enabled by default. It can be activated individually in user profiles—or enforced company-wide if a management company chooses to make it a policy.

Enhanced security at every level

Earning SOC 2 Type 2 certification was a major milestone in our security strategy. It proves our security controls are not only in place but consistently applied over time.

This standard includes:

  • Confidentiality of customer data
  • Platform availability
  • Infrastructure reliability

In this context, activating 2FA adds an extra layer of security to user access, drastically reducing the risk of stolen credentials or malicious intrusions.

What is 2FA and why is it important?

Two-Factor Authentication adds a second verification step to your regular password. Once enabled, logging into UpperBee requires:

  1. Entering your usual password
  2. Entering a temporary code generated by a mobile app (like Google Authenticator or Microsoft Authenticator) Access remains valid for 14 days.

This simple and quick method makes it significantly harder to hack your account, even if your password is compromised.


Why activate 2FA (Even if it’s optional)?

2FA helps prevent or limit:

  • Fraudulent login attempts using stolen or guessed passwords
  • Email phishing attacks
  • Unauthorized access to sensitive data due to credential leaks
  • Internal misuse when passwords are shared among colleagues

2FA doesn’t replace good password hygiene, but it adds a critical barrier.

‘‘Offering two-factor authentication means giving our users control over their own security level. We empower them to elevate the protection of their data based on their needs and risk tolerance.’’

Cédric Deschamps, CTO – UpperBee

Why we chose TOTP Apps like Google Authenticator or Microsoft Authenticator

We deliberately chose not to use SMS or email methods to generate security codes. Why?

1. Less vulnerable to interception

SMS and emails can be intercepted through:

  • Email hacking
  • SIM cloning or theft (e.g., SIM swap attacks)
  • Compromised or public Wi-Fi networks

TOTP (Time-based One-Time Password) apps generate the code locally on your device, with no network transmission.

2. Immune to redirect (phishing) attacks

Attackers can trick you into a fake site and capture a one-time SMS or email code.

A TOTP code is valid for only a few seconds, and requiring physical access to the device greatly reduces the success of such attacks.

3. Network independence

TOTP apps work even without internet or cellular signal, making them more reliable in secure or restricted environments.

4. No dependency on providers

SMS and email depend on:

  • Your carrier or email provider
  • A number or email address you might lose

TOTP tokens are linked to the initially configured device, giving users more control.

Using a TOTP app is much more secure than SMS or email—it eliminates several attack vectors and is based on a shared secret that cannot be transmitted remotely.

An option, not a requirement… But a best practice

Are you a management company?
You can enable 2FA company-wide for your entire team—an excellent way to show clients you take cybersecurity seriously.

Are you an administrator or resident?
You can activate 2FA individually within your profile to better secure your platform access.


Smooth, supported implementation

Understanding the impact of this change, the UpperBee team has provided support tools to ease the transition, such as step-by-step visual guides to activate 2FA.

In summary

  • Available Now
  • Optional Activation
  • For All Users
  • Enhanced Security
  • Recommended by UpperBee
  • Easy to Set Up

‘‘2FA isn’t just another feature. It’s a foundational part of our security architecture. It reflects our commitment to staying at the forefront of technology to protect what really matters—our clients’ trust.’’

Cédric Deschamps, CTO – UpperBee

Conclusion: Security as a driver of innovation at UpperBee

Two-Factor Authentication is part of a broader set of initiatives designed to make UpperBee one of the most secure property management platforms in North America. It complements our ongoing efforts around compliance, confidentiality, availability, and performance.

With concrete measures like 2FA and SOC 2 Type 2 certification, we’re offering more than just a tool—we’re providing a reliable, compliant management solution ready to meet today’s digital challenges.


Popular articles

Gestion Immobilière Ranking of the best property management companies in Montreal

Solution Condo moves up to 12th place among the top players and portfolios of the Canadian condominium industry! SolutionCondo moves up to 12th place among the top players and portfolios of the Canadian condominium industry!

Wilkar / UpperBee Wilkar Property Management obtains the management of Nordelec Urban Condos

Reminders on the use of barbecues in multi-residential rental and condominium buildings

 

Products

Tell us your needs

UpperBee offers management software solutions for all property types. 
But which solution should you choose? Let us guide you and choose your demo according to your needs!

MANAGER | CONDO | RENTAL | TRACK&FIX | MEETING | BONJOUR | PAY

Contact us