Document management with permissions you can trust

Every file secured, every download authorized

Secure file management is critical for associations. Associations handle a wide range of documents -- application materials, committee reports, regulatory filings, training certificates, board minutes, and member-uploaded files. Managing these files securely is critical, especially when some are public, some are for members only, and some should never be seen outside your office. Upside AMS provides a document management system where every file has clear, enforced permissions.

Three permission levels, enforced on every request. Every file in the system is assigned one of three permission levels: public, inherited, or private. Public files are accessible to anyone. Inherited files adopt the permissions of the record they are attached to -- so a document on a restricted committee page is only accessible to committee members. Private files are limited to the owner and designated staff. These permissions are checked on every single download request, so there is no way to access a file by guessing its URL.

Cloud storage with archival compliance. Files are stored in Amazon S3 cloud storage for durability and scalability, and all download links use secure tokens that prevent ID enumeration. For associations in regulated industries, never-delete archival mode ensures that no file is ever permanently removed -- every version is preserved for audits, legal holds, and compliance reviews.

Browse, search, and manage all files centrally. The admin interface includes a file browser for managing all uploaded documents, along with orphaned file detection to identify files that are no longer attached to any active record. This keeps your storage organized and gives staff visibility into everything stored in the system.

Key capabilities

• ✓
  Three-tier permission model -- Public, inherited, and private access levels give you precise control over who can view and download each file.
• ✓
  Automatic permission enforcement -- Every download request is verified against the file's permission level -- no exceptions, no workarounds.
• ✓
  Token-based URLs -- Secure, non-guessable download links prevent unauthorized users from accessing files by enumerating IDs.
• ✓
  Amazon S3 cloud storage -- Files are stored securely in the cloud with high durability and availability, managed automatically by the platform.
• ✓
  Never-delete archival mode -- Preserve every version of every file permanently for regulatory compliance, legal holds, and audit readiness.
• ✓
  Admin file browser -- Browse, search, and manage all uploaded files from a centralized interface in the admin panel.
• ✓
  Orphaned file detection -- Identify files that are no longer attached to any active record, keeping your storage clean and organized.
• ✓
  Multi-context file attachments -- Files can be attached to applications, committees, events, member profiles, and other records throughout the system.

How it works for members

Upload files as part of normal workflows. Members interact with documents naturally as part of their regular activities. When submitting an application, they upload supporting files directly through the form. When participating in a committee, they access shared documents from the committee page. When managing their profile, they can attach certificates, licenses, or other credentials that staff may need to review.

All files organized in one dashboard. All of a member's own files are accessible from their dashboard, organized by context -- applications, events, committees, and profile. Downloads are secured with token-based URLs, so members can only access files they are authorized to see. There is no way to stumble into someone else's private documents.

Security that works behind the scenes. The experience is seamless. Members upload files where they are needed, access them when they need them, and never have to think about the security layer working behind the scenes. They just know that their documents are safe and accessible.

How it works for staff

Search and filter across all stored files. Staff have access to the admin file browser, which provides a complete view of all files stored in the system. You can search by file name, associated record, upload date, or permission level. If you need to find every document attached to a specific application or committee, filtering makes it straightforward.

Permissions assigned automatically by context. When files are uploaded -- whether by members or by staff -- permissions are assigned automatically based on the context. A file attached to a public page is public. A file attached to a restricted committee is accessible only to committee members. Staff can override these defaults when needed, but in most cases the inherited permission model handles access control without any manual configuration.

Never-delete mode for regulatory compliance. For associations that need to retain documents for regulatory purposes, never-delete archival mode ensures that nothing is ever permanently removed. Even when a record is updated or a new file version is uploaded, the original is preserved. The orphaned file detection tool helps you identify files that have become detached from their records, so you can decide whether to reassign or archive them.