Settings and activity
2 results found
-
96 votes
Hi everyone, thank you for your feedback and I do want to apologise for any confusion my update's caused. You're correct in that the responsibility outlined in my response is relevant to the concessional contribution cap. Seeing your responses today, we now appreciate that the idea here is specifically around the maximum contribution base.
I want to assure you this is something our product teams are paying close attention to and though we don't have any immediate plans we can share, we will consider this request as we continue to plan our roadmap - We encourage you to share any further details on your experiences related to managing the maximum contribution base as these will be helpful to the product team as they assess this feature.
An error occurred while saving the comment 
Susan Madden
supported this idea
·
-
1,079 votes
Hi everyone, we appreciate the interest surrounding this idea, however we want to be open that we're unable to extend our log-out time past 60 minutes. Xero hold a lot of sensitive information including bank data and we're required to be as secure as online banking.
Any session information running on a web browser can potentially be stolen. If the session does not time out. You then have an infinitely long vulnerability window to session hijacking. Our best option is to keep a tight expiration window on the session cookie, and regenerate them frequently. Even setting a long timeout doesn't help with this - too long a timeout will greatly increase the risk of invasion or potentially jeopardise your personal data and the safety and integrity of the Xero application itself. This is why we maintain control of this.
If we detect there's been no activity on a page (e.g…Susan Madden
supported this idea
·
Is there an update to this request? I can't believe it's not part of standard Xero functionality.