Daily entry, approvals, project tracking, 13 audit-ready reports, mandatory MFA, SSO, role-based access — all included, free.
Accurate daily timekeeping, accountable approvals, project- and contract-level labor tracking, clean reporting — no enterprise complexity, no premium tier.
Cell-edit modal with Start/End times, required notes, late-entry detection, sealed days, mobile parity.
Prime + sub awards, CLINs with funding, direct/indirect labor segregation, per-employee charge authorization.
Submission → certify → review → approve. Proxy edit, reopen pre-lock, post-lock correction requests.
DCAA audit suite (5), operations (6), billing (2). CSV export on every report. Append-only audit trail.
Mandatory TOTP MFA, Argon2id passwords, tenant-aware isolation, SAML + Microsoft Entra OIDC.
A structured grid aligns authorized charge codes to each day of the pay period. Cells open a focused entry modal — Start/End times, computed hours, lunch break, a required note, and a required reason when editing an existing entry.
Organize prime and subcontract awards, align CLINs with funding and periods of performance, and maintain visibility across direct and indirect labor categories. Per-employee charge access restricts users to only the codes they're authorized to use — reducing mischarge risk at the source, not after the audit.
A clear submission and review workflow from employee certification through supervisor approval — with proxy edit when employees are out and tracked corrections after lock.
Daily entries against authorized charge codes with required notes.
Electronic attestation at submit, timestamped with IP address.
Approval queue with full per-period visibility and status pills.
Reason required on rejection. Reopen approved (pre-lock) when needed.
Post-lock amendments with full before/after audit snapshots.
DCAA audit, operations, and billing reports — all CSV-exportable, all backed by an append-only audit trail that captures who changed what, when, and why.
Foundational controls that support dependable operation across every tenant workspace — the same controls Providence Solutions applies to its federal cybersecurity work.
TOTP after first login. Compatible with Google Authenticator, Microsoft Authenticator, Authy. Admin can reset.
Industry-standard memory-hard hashing. 12-character minimum with strength validation. No plaintext storage.
PostgreSQL RLS enforced per-tenant. Application-layer permission checks. Cross-tenant access architecturally impossible.
Microsoft Entra ID OIDC or SAML 2.0. Auto-provisioning on first SSO login. Domain-based tenant routing.
Roles, permissions, time-off policy, holidays, training, reminders — every admin surface a growing team needs, configured per tenant.
4 built-in roles (Employee / Supervisor / Manager / Admin). Fine-grained permissions matrix with optional two-person sign-off on destructive actions.
Per-PTO-code annual allotments. Accrual model: fully-assigned at period start, or accrued proportionally. Rollover annual or by hire-date anniversary.
11 US federal holidays pre-seeded for 3 years. Toggle observed/not observed per tenant. Add custom holidays (company anniversaries, floating days).
Tenant-configurable training content shown as blocking modal on first login. Re-acknowledgment cadence (annual default). Audit-logged with exact text seen.
Daily nudge for missing entries plus period-end reminders. Email + in-app bell. Configurable schedule per tenant.
For single-officer companies where segregation of duties is impossible. Audit-logged, explicitly acknowledged, surfaced on the Approver Segregation report.
Every team gets every feature, the day it ships. No tiers, no upsells, no per-seat fees.
Create your free workspace