Self-service without the password reset emails.
Every customer and supplier gets a personalised public link. They see their statement, download invoices, pay online — no Nonari account required. The URL is a token, the data is scoped, the page renders in 200ms.
Token-authenticated
A single signed URL per contact. The token authenticates them — no password to reset, no account to create, no friction.
Multi-portal
Customer portal (statement, invoices, payments). Supplier portal (bills, payment status). Statement portal (read-only summary). Same engine, three surfaces.
Branded
Portal inherits your org's logo, primary colour, and footer. The customer sees your brand, not Nonari's.
Live invoice list
Real-time view of every invoice — open, paid, partial, overdue. Filter and sort by date or status. Drill into any to see the PDF and pay.
Online payment
Connect Stripe (global) or regional gateways (1Bill, JazzCash, Safepay, and more). Customer pays from the portal; payment auto-reconciles to the right invoice.
Statement download
Monthly or custom-period statements as PDF. The customer pulls them on their own schedule — no "can you resend me last month's statement" emails.
Banking details
Your bank details (for wire transfer) display in the portal. Suppliers see your wire details on their bills; customers see yours on their invoices.
Loyalty + credit balance
Customers see their loyalty points, expiry dates, and credit balance. Redeem points right from the portal without staff involvement.
Notification preferences
Customers and suppliers choose their notification channels — email, WhatsApp, both, or none. Stored per-contact, respected everywhere.
Token rotation
Rotate a token (revoke and re-issue) if a customer's email is compromised. Old link 404s instantly; new link works. No downtime.
Audit trail
Every portal visit logged — when the customer last viewed the statement, downloaded an invoice, attempted a payment. Useful for collections.
Frequently asked.
Is the portal secure without a password?
Yes. The token is a cryptographically random 32-character string in the URL. Brute-force impractical (10^57 combinations). You can rotate the token if the URL leaks. Optional rate-limiting on the portal endpoint.
Can customers update their own contact info?
Yes — name, email, phone, billing address, notification preferences. Updates flow back into Nonari with a "self-updated" tag on the audit log.
Does the portal work on mobile?
Yes. Fully responsive. Portal links work cleanly from any phone — ideal for WhatsApp and SMS payment reminders.
See it in action.
Free to start, no credit card. Bring your books, kick the tires, export everything if you decide to leave.