Step 1 of 7

Customer Visits Secure Portal

Customer accesses the firm's verification portal to submit a verified instruction

Scenario

Sarah Mitchell Needs to Submit Bank Details

Sarah Mitchell is ready to complete her property purchase. She needs to provide her bank account details to Shepherd+Wedderburn for the completion funds transfer. Instead of sending this sensitive information via email (which could be intercepted or spoofed), she visits the firm's secure verification portal.

Why Use the Portal?

Email is inherently insecure for sensitive instructions. An attacker who compromises a customer's email could send fraudulent bank details, approve unauthorized actions, or impersonate the customer. The portal ensures every instruction is cryptographically signed and impossible to forge.

Portal Access

🔒 https://shepwedd.com/verify

Secure Customer Verification Portal

Submit instructions, confirm details, and communicate securely with your legal team using cryptographic passkey authentication.

📧 From Verified Email

Click the secure portal link in any verified email from your solicitor

🌐 From Website

Navigate from the firm's official website to the verification portal

🔖 From Bookmark

Save the portal URL as a bookmark for quick access

⌨️ Manual Entry (Recommended)

Type the URL directly to ensure you're on the genuine domain

🔐 Security Best Practice

Always verify the domain: Before entering any information or authenticating, check that the URL is exactly https://shepwedd.com/verify (or your firm's official domain). Phishing sites may use similar-looking domains like "shepwedd.com" or "shepwedd-secure.com". Manual typing is the most secure access method.

Key Security Features

Domain Verification

  • Always uses firm's official domain
  • SSL/TLS encryption (HTTPS)
  • Extended validation certificate
  • Browser security indicators visible

Multiple Access Methods

  • Link from verified firm email
  • Firm's official website
  • Saved bookmark
  • Manual URL entry (most secure)

Phishing Protection

  • Passkeys only work on correct domain
  • Cannot be used on fake sites
  • Browser validates certificate
  • No passwords to be phished

Customer Confidence

  • Clear branding and identification
  • Familiar interface for returning customers
  • Transparent security messaging
  • No hidden processes

What Happens Next?

Authentication Required

Once Sarah confirms she's on the correct portal, she'll need to authenticate using her passkey. If this is her first time, she'll complete a one-time onboarding process. If she's a returning customer, she'll simply authenticate with Face ID, Touch ID, or Windows Hello.

← All Workflows Next: Authenticate →