What this product does, in one sentence
WSIB Workflow tells you, at a glance, whether every subcontractor on every project has a valid WSIB clearance and Certificate of Insurance — and helps you fix the ones that don't before site start.
Create your account
Self-serve signup creates a brand-new workspace where you are the owner. No invite code needed.
- 1Open /signup. Enter your company name, work email and a password (8+ characters).
- 2Click Create account. We create your organization, make you the owner and drop you on the readiness board.
- 3If your Supabase project has email confirmation on, you'll be asked to confirm your inbox before signing in.
- 4Invite the rest of your team from Team → Invite member once you're in.
Tip. Already invited by a teammate? Use the link they sent — that flow keeps you in their existing organization instead of creating a new one.
Sign in & MFA
Your dashboard is locked behind your work email and (recommended) a second factor. Sign-in is the same on every device.
- 1Open the app and enter the email you signed up with.
- 2Type your password. If you forgot it, hit Forgot password — we'll email a reset link.
- 3On first sign-in we'll prompt you to enable MFA. Scan the QR code with Google Authenticator, 1Password or any TOTP app.
- 4Enter the 6-digit code to confirm. From now on, you'll be asked for that code on every new device.
Tip. Owners can require MFA for their whole organization. See Team → Security.
Invite your team
Each teammate gets a role: Owner (billing + everything), Admin (day-to-day), or Reviewer (read-only). Invitations are one-click.
- 1Open Team in the top navigation.
- 2Click Invite member, type a work email, pick a role.
- 3We email an invite link that opens at /invite/<token>. The invitee creates their password and joins your organization.
- 4You can change a role or remove a member at any time from the same screen.
Tip. Belong to more than one company? Use the organization switcher in the top-left to jump between dashboards.
The readiness board (your home page)
The dashboard is a traffic light, not a report. Every project on every page shows whether its subcontractors can start a site today — green, amber or red.
- 1Land on the dashboard at /. The first thing you see is your active projects ranked by risk.
- 2Click any project to drill into its contractors.
- 3Filter by Compliant / Expiring / Stale / Expired using the chips on top.
- 4Click a contractor to see exactly which document (WSIB or COI) is causing the colour.
Tip. Red means do-not-admit. Amber means OK to admit if you've already sent a reminder. Green means good to go.
Create a project
Projects represent job sites or client engagements. They are the container for the contractors you need cleared.
- 1From the dashboard, click New project.
- 2Give it a name (e.g. "123 King St — Phase 2"), a client and a start date.
- 3Add the contractors that will be on this site. You can pick existing ones or create new.
- 4Save. The project shows up on your board with its readiness already computed.
Add a contractor
Contractors are tracked across all your projects — add them once, reuse them everywhere.
- 1Open a project, click Add contractor → New contractor.
- 2Fill the legal company name, primary contact email, optional WSIB account number.
- 3Hit Save. The contractor is now linked to this project and visible in your global directory.
- 4To link an existing contractor to another project, use Add contractor → Existing and search.
Tip. Search the directory before creating a new entry — duplicates split the audit trail.
Upload a WSIB or COI document
PDF, JPG and PNG. We compute readiness from the file you upload — issuer, expiry date, coverage limits.
- 1Open a contractor → Documents tab → Upload document.
- 2Pick the document type (WSIB Clearance or Certificate of Insurance).
- 3Drag the file in or click Browse. We accept up to 25 MB per file.
- 4Review the parsed fields. Hit Save to record it — the contractor's colour updates immediately.
Heads-up. Never upload a screenshot of a clearance certificate. Upload the original PDF — it carries the signature we verify.
Request a document from a subcontractor
Instead of chasing emails, hand the subcontractor a tokenized upload link. They open it on any device, attach the file, done.
- 1Open the contractor → Documents → Request document.
- 2Choose the document type and the email of the person who can upload it.
- 3We send them an email with a link that looks like /upload/<random-token>. The link is single-organization and revocable.
- 4When they submit, you'll get a notification and the file lands directly on the contractor card.
Tip. Use the Action Center to see every open request across your organization, with last-touched dates.
What the subcontractor sees
The /upload/<token> page is a stripped-down form. No login. Just upload and confirm.
- 1Subcontractor opens the link from the email.
- 2They drag the document in or take a photo on mobile.
- 3They tap Submit. The upload is encrypted in transit and saved to your contractor's card.
- 4They see a confirmation page so they know the request is complete.
Tip. If they upload the wrong file, just send a new request — old tokens can be revoked from the contractor screen.
Reminders & Action Center
Both your team and your subcontractors get nudged automatically. You decide the cadence; we handle the email.
- 1Open Settings → Reminders. Pick warning windows (e.g. 14 days, 7 days, day-of for expiries).
- 2Add the email addresses on your side who should get the nudge.
- 3Outstanding document requests get their own cadence (e.g. resend after 3 days, then daily).
- 4Everything queued for action shows up in the Action Center bell at the top.
Tip. Snooze a reminder from the Action Center if you've already followed up by phone.
Audit trail
Every change is recorded — who, what, when. This is what you show an auditor or an insurer.
- 1Open Team → Audit, or the Activity tab on a project or contractor.
- 2Filter by user, by event type (sign-in, upload, edit, delete) or by date range.
- 3Click any event to see the full payload (before / after for edits).
- 4Export the visible range to CSV for record-keeping.
OCR extraction (optional)
Turn on OCR and we'll auto-fill insurer, policy number, effective dates and coverage limits from a COI PDF.
- 1Open Settings → AI extraction and toggle it on. (Owners only.)
- 2Upload a COI as usual. The extraction runs in the background.
- 3You'll be asked to confirm the fields. Anything we're unsure about is flagged in amber.
- 4Save to accept. The original PDF stays on file as the source of truth.
Heads-up. OCR is a convenience, not a guarantee. Always eyeball the parsed fields before saving.
Owner pack export
One PDF, everything an owner or auditor needs: projects, contractors, latest documents, readiness, recent activity.
- 1Open a project → Owner pack.
- 2Pick the timeframe (default: today + last 90 days of activity).
- 3Hit Generate. We render the PDF on the backend and email a copy to you.
- 4Forward the PDF to your owner / GC / insurer. They don't need an account to read it.
Webhooks & integrations
Push document and request events into your ERP, HR tool or Slack the moment they happen.
- 1Open Settings → Webhooks, click Add endpoint.
- 2Paste the receiving URL and pick the event types you care about.
- 3Copy the signing secret we generate. Verify the X-Wsib-Signature header on your side.
- 4We retry failed deliveries with backoff and surface them on the same screen.
Tip. Use a test endpoint like webhook.site first to see exactly what we send.
Billing & compliance hold
Plans are managed per organization. If a card fails we keep your data and read-only access; new requests and exports pause until billing is fixed.
- 1Owners open Settings → Billing.
- 2Pick or change a plan. We bill monthly or annually in advance.
- 3On a failed payment you'll see a yellow banner across the dashboard. Update the card to lift the hold.
- 4Cancel from the same screen. Your data is retained per the Privacy Policy.
Email & sending domain
All notifications go out over SMTP. Pointing them at your own domain is one DNS record.
- 1Open Settings → Email.
- 2Set the From address you want subcontractors to see, e.g. compliance@yourco.com.
- 3Add the SPF / DKIM records we show you to your DNS.
- 4Send a test email from the same screen to confirm delivery.
Tip. Until DNS is verified we'll send from a generic no-reply address with a Reply-To pointed at you.
Still stuck? Email info@temp.ca and we'll get back the same business day.