JotFlow Dashboard — Technical Scope

Bettroi FZE — Technical Proposal & Scope of Work

JotFlow
Workflow Management
Dashboard

A centralised, role-based dashboard that connects directly to JotForm Enterprise — giving every approver, manager, and director a real-time view of pending approvals, smart action buttons, signature capture, and a complete audit trail. Deployed on your own secure environment.

Prepared By

Bettroi FZE

admin@bettroi.com
bettroi.com · A5 Dtec, DSO, Dubai

Prepared For

Client

Jotform Enterprise Client
Workflow Management Division

Reference

SAL-QTN-2026-00007

Date: March 10, 2026

Document Type

Technical Scope

For client review
and approval

JotFlow Dashboard · Technical Scope · SAL-QTN-2026-00007 Page 2 of 5

01 — Executive Summary

One Dashboard. Every Approval.

"JotForm Enterprise is powerful — but approvers should not have to search their inbox to find a pending action. JotFlow gives every person in your organisation a personalised, real-time dashboard where they see exactly what needs their attention, take action in one click, and leave a traceable comment — all without ever leaving the platform."

JotFlow is a bespoke web application that sits on top of your existing JotForm Enterprise workspace. It connects to JotForm Enterprise via API to pull live submission data, workflow states, and step assignments — and presents each user with a focused, role-appropriate interface. JotForm Enterprise users can approve, view incorporated forms and complete tasks. All from a single dashboard, deployed on Client's own secure environment.

02 — Scope of Work

Six Core Deliverables

1

Personalised Approver Dashboard & KPI Summary

Role-based welcome screen per user. Four KPI cards: Pending Approvals, Approved Today, Average Wait (days), Critical (>7 days overdue). Focused queue showing only that user's pending items. Left sidebar lists all JotForm Enterprise form names — click any to filter both views instantly.

2

Workflow Tracker — Full Submissions Report

A complete report listing all workflow submissions across the organization. Columns: Form Reference, Title / Form, Submitted By, Date, Approval Level, Approver (Username), Days at Level, Total Days Elapsed, Where is the Form Pending for Approval, Status. Includes a Filter control and Export to Excel. Statuses displayed: In Progress, Completed, Rejected, Delayed, Critical.

3

Smart Action Intelligence — Approve, Task, Sign & Complete Form

Dashboard reads the current workflow step type from JotForm Enterprise and shows only the correct button: Approve + Reject (with mandatory comment) for approval steps; Complete Form for evaluator/executive steps; Task button for Finance/Procurement steps. Signature capture (in-dashboard) triggered on Director-level "Approval + Sign" steps.

4

Live JotForm Enterprise API Integration, Auto-Refresh & Comment Push

All submission data, states, and step assignments sourced live from JotForm Enterprise API with continuous auto-refresh — no manual reload required. Every Approve/Reject comment pushed back to the JotForm Enterprise submission record automatically, maintaining a full audit trail inside JotForm Enterprise independent of the dashboard.

5

Role-Based Access Control & Government-Grade Security

Director / Manager / Approver / Staff / Admin roles with strict data isolation. AES-256 encryption at rest, TLS 1.3 in transit, server-side API key vault, immutable audit trail with user + timestamp + IP, JWT session management, Microsoft SSO / Azure AD integration available, firewall and IP whitelisting support.

6

Deployment on Client Infrastructure & Go-Live Support

Application deployed on the virtual machine or cloud environment provided by Client. Bettroi configures, deploys, and hands over the fully working application. No third-party data exposure — all data stays on client's own infrastructure. Go-live support and 30-day post-launch warranty included.

JotFlow Dashboard · Technical Scope · SAL-QTN-2026-00007 Page 3 of 5

03 — Dashboard Views & Reports

What Every User Sees

✅

Personalised Approval Inbox

Each user sees only their pending approvals — no clutter, no wrong forms. KPI cards at the top show their workload at a glance.

📈

Workflow Tracker Report

Full organisation-wide submissions view with status, days elapsed, pending approver, and one-click export to Excel for management reporting.

⚠

Overdue & Critical Alerts

Submissions overdue beyond 7 days are automatically flagged as Critical — visible to managers and directors for immediate escalation.

📄

Form-Filtered Views

Left sidebar lists all JotForm Enterprise form names. One click filters every report to show only that form's submissions — PO Approvals, Leave, IT, Events, etc.

🖊

Signature & Comment Trail

Every approval action includes a mandatory comment. Director approvals capture a digital signature in-dashboard. All records pushed to JotForm Enterprise for compliance.

📋

JotForm Enterprise Inbox Deep Link

"View in JotForm Enterprise" opens the user's personal blue Inbox view — not the admin table. Every step is completable from one page without navigating away.

04 — Security Architecture

Government-Grade Data Protection

Data Residency on Client Environment

All data stored exclusively on the client-provided VM or cloud environment. Zero third-party data exposure. No external cloud dependency — full compliance with UAE government data residency requirements.

AES-256 Encryption + TLS 1.3

Database-level AES-256 encryption at rest for all submissions, approvals, comments, and documents. TLS 1.3 in transit — all API communication encrypted end-to-end.

API Key Vault & Server-Side Proxy

JotForm Enterprise API keys stored in a server-side vault. Never exposed to the browser or client-side code. All JotForm Enterprise calls made via a secure server-side proxy layer.

Immutable Audit Trail

Every action logged with user identity, timestamp, and IP address. Tamper-proof logs for full compliance accountability — aligned with ISO 27001 and UAE government audit standards.

Session Management & SSO

Auto-expiring JWT sessions with re-authentication after inactivity. Microsoft SSO / Azure AD integration available for seamless client corporate identity authentication.

Firewall, IP Whitelisting & Rate Limiting

Dashboard accessible only from client's internal network. Rate limiting enforced on all API endpoints. Configurable IP whitelist for additional access control.

Role-Based Data Isolation

Director, Manager, Approver, Staff, and Admin roles with strict data isolation. Each role sees only what it is permitted — no cross-department data leakage.

Zero Trust Architecture

No implicit trust at any layer. Every request validated, authenticated, and authorised server-side before data is returned — regardless of network origin.

JotFlow Dashboard · Technical Scope · SAL-QTN-2026-00007 Page 4 of 5

05 — Timeline

3-Week Delivery

Week 1 — Foundation

Core Dashboard, JotForm Enterprise API Integration & RBAC

Application scaffold, authentication, role-based access control, live JotForm Enterprise API connection, submission data pull, personalised approver inbox and KPI summary cards.

Week 2 — Intelligence

Smart Actions, Signature Flow & Workflow Tracker

Smart action button logic (Approve / Reject / Complete Form / Task), mandatory comment push to JotForm Enterprise, Director signature capture in-dashboard, Workflow Tracker report with filters and Excel export, form-wise sidebar navigation.

Week 3 — Delivery

UAT, Security Hardening & Deployment on Client Environment

User acceptance testing with client team, security hardening (encryption, API vault, session management, IP whitelisting), deployment on client-provided VM, go-live sign-off.

15

Working Days

Total delivery from date of Purchase Order (PO) issuance. Timeline begins upon receipt of signed PO, JotForm Enterprise API key, and access credentials to client's deployment environment.

Timeline Disclaimer

The above timeline is indicative and may change based on the time taken by the client to provision and grant access to their infrastructure for software installation on their premises. Any delay in providing the required access, credentials, or environment will result in a corresponding extension of the delivery timeline. Bettroi will not be held responsible for delays arising from infrastructure access constraints on the client's side.

06 — Smart Action User Flows

View Form & View Task — Confirmed User Flows

JotFlow.in displays context-aware action buttons based on the current JotForm Enterprise workflow step type. The two primary flows — View Form and View Task — both route the user to the JotForm Enterprise Inbox, where they complete the action natively inside JotForm Enterprise.

Flow A View Form — Viewing & Completing an Incorporated Form

1

View Form available in JotFlow.in

The View Form functionality is available in JotFlow.in for viewing incorporated forms in the workflow.

›

2

Button directs user to JotForm Enterprise Inbox

A button in JotFlow.in directs the user to the Inbox page of the workflow in JotForm Enterprise.

›

3

User opens form inside JotForm Enterprise workflow

Once taken to the Inbox page, the user is able to open the incorporated form inside the JotForm Enterprise workflow.

›

4
Form completed inside JotForm Enterprise
The user is able to complete the form inside JotForm Enterprise.

Flow B View Task — Viewing & Completing a Task in Workflow

1

View Task available in JotFlow.in

The View Task functionality is available in JotFlow.in for viewing the task in the workflow.

›

2

Button directs user to JotForm Enterprise Inbox

A button in JotFlow.in directs the user to the Inbox page of the workflow in JotForm Enterprise.

›

3

"View Task" button visible in JotForm Enterprise Inbox

Once taken to the Inbox page, the user is able to view the View Task button inside JotForm Enterprise. The task incorporated form is visible on clicking the button.

›

4
Task completed inside JotForm Enterprise
The user is able to complete the task inside JotForm Enterprise.

JotFlow Dashboard · Technical Scope · SAL-QTN-2026-00007 Page 5 of 5

07 — Terms & Conditions

Engagement Terms

The 3-week delivery timeline commences upon receipt of: (a) signed Purchase Order or written acceptance, (b) JotForm Enterprise API key and workspace access credentials, and (c) access to client's deployment environment (VM or cloud).
Client is responsible for provisioning and providing access to the server, virtual machine, or cloud environment on which JotFlow will be deployed. Bettroi will configure, deploy, and hand over the application on the provided environment.
The delivery timeline is subject to change based on the time taken by the client to grant access to their infrastructure for software installation. Any delay in provisioning access, credentials, or the deployment environment will result in a corresponding extension of the project timeline. Bettroi will not be held responsible for delays arising from such constraints.
All JotForm Enterprise workflow forms, approval steps, and API configurations must be fully set up and operational in JotForm Enterprise prior to dashboard integration. JotFlow connects to existing JotForm Enterprise workflows — it does not configure or build JotForm Enterprise forms.
Bettroi provides a 30-day warranty post go-live covering bugs directly attributable to the dashboard code. Changes to JotForm Enterprise workflows or API after go-live are outside warranty scope.
Source code is transferred to Client upon receipt of the final milestone payment.
Microsoft SSO / Azure AD integration, if required, is included in scope provided client supplies the necessary Azure AD application credentials and tenant access prior to Week 2.
All work is performed remotely. Bettroi FZE is registered at Dubai Silicon Oasis Authority (Trade License: DTEC-51432). Governed by UAE law.
VAT: VAT (5%) will be applied on Tax Invoices as per UAE Federal Tax Law.

API Dependency Disclaimer

The entire functionality of JotFlow.in is built upon and is wholly dependent on the JotForm Enterprise API. All features, workflows, and integrations described in this document are achievable solely through the API services that JotForm Enterprise provides, in accordance with their published API documentation.

Any changes, deprecations, or modifications made by JotForm Enterprise to their API documentation or API services in the future will directly affect the functionality of JotFlow.in. Bettroi cannot be held responsible for disruptions arising from such changes. In the event of API changes, any remediation work required will be scoped and quoted separately.

Scope Confirmation

By signing below or confirming acceptance in writing, Client acknowledges agreement to the technical scope, user flows, and delivery terms set out in this document (Ref: SAL-QTN-2026-00007).

Signature — Client

Date