iDeals API
iDeals is a secure virtual data room (VDR) used for M&A due diligence, fundraising, corporate governance, and other confidential document sharing. An unofficial API lets you programmatically pull data rooms, users and groups, folder structures, documents and versions, Q&A threads, per
What is iDeals?
iDeals is a cloud-based Virtual Data Room platform built for secure document sharing and collaboration during transactions and governance processes. Organizations use iDeals to centralize sensitive documents, enforce granular permissions and watermarks, route and answer Q&A during diligence, and maintain auditable activity histories across buyers, sellers, advisors, and internal teams.
Core product areas include:
- Document Management (Rooms, Folders, Documents, Versions, Tags, Dynamic Watermarking, View-Only/DRM)
- User & Access Control (Users, Groups, Roles, Invitations, NDA/Terms Acceptance, Permission Profiles)
- Q&A Workflow (Questions, Answers, Categories, Routing, Redaction, Status/Visibility)
- Analytics & Audit (Activity Logs, Engagement Reports, Document Access Statistics)
- Room Administration (Indexing, Branding, Room Settings, Security Policies, Expiration/Archival)
Common data entities:
- Data Rooms (metadata, status, transaction type)
- Users and Groups (roles, invitations, access scopes)
- Folders and Documents (versions, DRM/watermark settings, tags)
- Q&A Threads (questions, answers, categories, attachments, status)
- Permissions (folder-level/document-level rights: view, download, print, Q&A access)
- Activity Events (document views/downloads, login, Q&A actions, invites)
The iDeals Integration Challenge
Teams rely on iDeals for mission-critical deal workflows, but turning portal-based processes into API-driven automation is non-trivial:
- Complex permission matrices: Groups, roles, and exceptions at folder/document levels must be respected for security and compliance
- DRM and watermark controls: View-only modes, fence view, and restricted downloads can complicate automated ingestion and export
- Q&A orchestration: Multi-step routing, redaction, and visibility states are optimized for manual portal flows
- Authentication complexity: SSO/MFA and challenge lifecycles make headless automation fragile without careful session management
- Limited native exports: Many reports/Q&A lists are available as XLSX/CSV downloads, not as structured APIs, making data normalization key
How Supergood Creates iDeals APIs
Supergood reverse-engineers authenticated browser flows and network interactions to deliver a resilient API endpoint layer for your iDeals tenant.
- Handles username/password, SSO/OAuth, and MFA (SMS, email, TOTP) securely
- Maintains session continuity with automated refresh and change detection
- Normalizes responses so you can integrate once and rely on consistent objects across modules
- Aligns with customer entitlements and role-based permissions to ensure compliant access
- Supports large file uploads with chunking, hashing, and resumable retries
Getting Started
- Schedule Integration Assessment
Book a 30-minute session to confirm your modules, licensing, and authentication model.
- Supergood Builds and Validates Your API
We deliver a hardened iDeals adapter tailored to your workflows and entitlements.
- Deploy with Monitoring
Go live with continuous monitoring and automatic adjustments as iDeals evolves.
API Endpoints
Authentication
/sessionsEstablish a session using credentials. Supergood manages MFA (SMS, email, TOTP) and SSO/OAuth when enabled. Returns a short-lived auth token maintained by the platform.
Authentication
/sessions/refreshRefresh an existing token to keep sessions uninterrupted.
Data Rooms
/data-roomsList rooms with filters and summary details.
Documents
/data-rooms/{roomId}/documentsUpload a document to a folder with classification and security settings.
Q&A
/data-rooms/{roomId}/qna/questionsCreate a Q&A question with routing, visibility, and attachments.
Use Cases
Data Room & User Sync
- Mirror data rooms, users, and groups into your internal systems - Keep room metadata and statuses current for analytics and reporting - Standardize group roles and invitation lifecycles across deals
Document Ingestion & Classification
- Automate uploads with folder routing, tags, watermark policies, and view-only settings - Synchronize document versions and maintain integrity via file hashing - Trigger notifications to specific groups when new docs are available
Q&A Workflow Automation
- Create and route questions from your product to deal coordinators - Track categories, priorities, and visibility states for investor/buyer access - Ingest answers and attachments to keep stakeholders aligned
Audit & Compliance Reporting
- Stream activity logs (views, downloads, logins, Q&A) into your GRC or data warehouse - Build engagement dashboards and alerts based on document interaction - Maintain immutable audit records aligned to your governance requirements
Technical Specifications
Authentication
Username/password with MFA (SMS, email, TOTP) and SSO/OAuth where enabled; supports service accounts or customer-managed credentials
Response format
JSON with consistent resource schemas and pagination across modules
Rate limits
Tuned for enterprise throughput while honoring customer entitlements and usage controls
Session management
Automatic reauth and cookie/session rotation with health checks
Data freshness
Near real-time retrieval of rooms, documents, Q&A, and audit events
Security
Encrypted transport, scoped tokens, and audit logging; respects iDeals role-based permissions and document restrictions
Webhooks
Optional asynchronous delivery for long-running workflows (e.g., Q&A updates, document uploads)
Latency
Sub-second responses for list/detail queries under normal load
Throughput
Designed for high-volume document upload and activity log export
Reliability
Retry logic, backoff, and idempotency keys minimize duplicate actions
Adaptation
Continuous monitoring for UI/API changes with rapid adapter updates
Frequently asked questions
Supergood supports workflows across commonly used modules such as Document Management (Rooms, Folders, Documents, Versions), Q&A (Questions, Answers, Categories), Access Control (Users, Groups, Permissions), and Analytics/Audit (Activity Logs), subject to your licensing and entitlements. We scope coverage during integration assessment.
We support username/password + MFA (SMS, email, TOTP) and can operate behind SSO/OAuth when enabled. Sessions are refreshed automatically with secure challenge handling.
Yes. We can normalize views/downloads/login/Q&A events and deliver updates via webhooks or polling while complying with rate and permission constraints. We commonly push to data warehouses and compliance platforms.
Yes. We model watermark policies and DRM settings in our normalized responses and enforce restricted download/view-only rules. Uploads can set watermark/DRM flags, and downloads comply with room policies.