Feature Request – Auto-Logout for Inactive Sessions (Security Enhancement)

I am writing to formally request the introduction of a configurable auto-logout feature for inactive user sessions within the Upmind platform, both for client and admin areas.

As our organisation places a high priority on data security and compliance, it is essential for us to ensure that accounts are not left vulnerable due to unattended sessions, especially in shared or public environments. The ability to automatically log out users after a defined period of inactivity is widely considered an industry standard for platforms handling sensitive customer and business data.

Implementing such a feature would not only enhance the security posture of all Upmind clients but also align the platform with best practices and regulatory requirements in various jurisdictions (including GDPR, PCI DSS, and others). Ideally, this setting should be customisable per organisation, allowing administrators to define the inactivity timeout period according to their risk profile and internal policies.

We strongly believe that enabling automatic session termination after user inactivity would significantly mitigate risks related to unauthorized access, and would be a valuable addition to the already robust security toolkit provided by Upmind.

Thank you in advance for considering this enhancement. We would appreciate any information regarding the roadmap or possible timelines for such an implementation.