Menu

Technology

Who Can See What: Data Isolation and Role-Based Access in Real Estate Software

TDSCity Team Mar 20, 2026 6 min read

Ask a developer what they most fear losing and it is rarely a plot it is the customer database and the commission structure. In software shared across companies, branches and agents, the question "who can see what" isn't a technicality. It is the difference between control and exposure.

Multi-tenant isolation, done properly

If your software serves multiple companies, each company's data must be bound to its own identity on every read and write. Done right, one company physically cannot query another's records not by policy, but by design. That isolation is the foundation everything else rests on.

Role-based access within a company

Isolation between companies isn't enough; you also need control inside your own. View, add, edit and delete rights should be assignable per role and per page, so a data-entry clerk, a branch manager and an owner each see an appropriate slice. An agent, in particular, should only ever see their own downline and sales.

Separate portals for separate roles

  • Admin app for your team, scoped by role.
  • Agent portal a separate session, limited to an agent's own data.
  • Maintenance/FMC logins locked to their own units and pages.

This same access model is what lets you run multiple branches and partner networks without leakage. Your data staying yours isn't a feature you turn on it should be how the platform is built. Book a demo to see the access model in action.

Back to all articles

See TDSCity on your own numbers.

A 1-on-1 walkthrough with your projects, your commission structure and your bottlenecks — not a canned demo.

Book a free demo