What's new

Big Bear Marketing changelog

Every meaningful change to the Big Bear CRM and the marketing site. Plain English. No marketing fluff. Most recent first.

11 May 2026 Wave 11

Stripe billing, self-service trials, and four industry-specific landing pages

The CRM can now actually take payments. New customers can sign up and start a trial in under a minute, no manual provisioning. Four industry-specific landing pages drive SEO traffic for trades searches.

  • NEWStripe Checkout subscription billing. Set the env vars and the upgrade buttons start working. Idempotent webhook handling, signature verification, automatic GST via Stripe Tax.
  • NEWSelf-service trial signup. Sign up creates your User, Organization, sales pipeline, six stages, and 14-day trial subscription in one atomic transaction. You log in immediately.
  • NEWFirst-login dashboard at /welcome/. Trial countdown plus a four-step onboarding checklist that ticks off as you complete each step.
  • NEWTrial badge in the header on every authenticated page when your subscription is in trial.
  • NEWFour industry landing pages: /for-electricians, /for-plumbers, /for-builders, /for-cleaners. Each one names the industry's specific workflow and is honest about what the CRM does and does not do.
  • NEWSeven-email trial nurture sequence ready to load into the email engine.
  • CHANGEDPrivacy data export at /account/privacy/export/ now generates JSON immediately and streams it as a download. No more 30-day wait for your own data.
  • NEWSearch Console + Bing Webmaster setup walkthrough on the marketing site.
11 May 2026 Wave 10

Privacy self-service, cancellation, sub-processors, and Cloudflare Turnstile

Every promise in the legal pack is now backed by working code. Customers can request a data export, request a correction, request deletion, and cancel their own subscription, all from the account page.

  • NEWPrivacy self-service at /account/privacy/. APP 12 export, APP 13 correction, account deletion. Audit trail on every request.
  • NEWIn-app cancellation at /account/cancel/. No more emailing Brandon to cancel.
  • NEWPublic sub-processor list at /legal/subprocessors/. Every third party that touches Customer data, with countries and certifications. The thing enterprise customers always ask for.
  • SECURITYCloudflare Turnstile on signup, env-aware. Set the keys and bot signups stop. Combines with the existing rate limit (5 per IP per hour, 3 per email per hour).
  • CHANGEDRefactored the _user_org() helper. Was copy-pasted in 11 view files, now one canonical helper at accounts/utils.py.
  • NEWMarketing site comparison page at /vs-hubspot. Pricing maths plus an honest feature table.
  • NEWBlog post: Privacy and your CRM data. Where your CRM data actually lives and why it matters under Australian privacy law.
11 May 2026 Wave 9

Full legal pack and the audit trail to defend it

The CRM now ships with five long-form legal documents covering NSW jurisdiction, the Australian Privacy Principles, the Australian Consumer Law, and the unfair-contract-terms regime. Every signup records exactly what each user agreed to.

  • NEWFive legal documents at /legal/terms/, /legal/privacy/, /legal/acceptable-use/, /legal/subscription/, /legal/licence/. Plus the index at /legal/.
  • NEWSource-Available Software Licence at the repo root. The code is published, you can self-host for your own business, you cannot run it as a SaaS for third parties.
  • NEWRequired I agree to the Terms checkbox on signup. Every acceptance writes a write-once UserAcceptance row with user, document, version, IP, user agent, and timestamp.
  • NEWRe-acceptance gate. Bump a document version and every existing user gets redirected to /legal/reaccept/ on next page load.
  • SECURITYOpen-redirect, XSS, IP-spoofing, and audit-trail-deletion vulnerabilities all closed in the legal acceptance flow.
  • CHANGEDMarketing site footer now shows CRM Legal link. Marketing site terms updated with a CRM ownership clause.
  • NEWCompliance audit and security audit reports saved to disk for future review.
10 May 2026 CRM live

Big Bear CRM live in production

The CRM moved from a local install to crm.bigbearmarketing.net on Render free tier. The marketing form on /about#contact now feeds leads directly into the CRM. Nathan's Born to Build admin sends heartbeats to confirm everything works.

  • NEWHosted CRM at crm.bigbearmarketing.net.
  • NEWLead pipeline: marketing form → Cloudflare Pages function → CRM intake → Contact + Deal created automatically.
  • NEWCustomer plugin endpoints for the Born to Build admin. Heartbeat works, full data sync ready.
  • FIXEDTwo production bugs found and closed within minutes of going live. Branded error pages and ALLOWED_HOSTS configuration.
10 May 2026 Marketing live

Marketing site live at bigbearmarketing.net

Five hand-coded pages. No template, no page-builder, no agency overhead. SEO-tuned, mobile-first, accessible. The lead form on /about#contact persists every submission to Cloudflare KV and (since Wave 8) fires straight into the CRM.

Want to know when something new ships? Email [email protected] with the subject "subscribe to changelog" and we'll add you to the list. We send these notes maybe once a month, never more, and you can unsubscribe in one click.

For the technical version with commit hashes and file paths, see the project repo at github.com/brandonconnor95-dev/big-bear-crm.