Financial data deserves engineering-grade controls.
We treat ledger data the way a bank treats balances: encrypted, scoped, audited and never delegated to unsupervised AI.
The security primitives we ship by default.
Modern identity with single sign-on support. Time-limited email invites (48 hours). No shared passwords, ever.
Four roles — Super-admin, Admin, Account manager, Client — each scoped to exactly what they need. Enforced everywhere, not just in the UI.
Each client's reports, files and audit logs are partitioned. Cross-tenant access is impossible by design — not just by policy.
Everything moving over the network is encrypted. Files and reports are encrypted at rest in our managed storage layer.
Every login, upload, publish action and permission change is recorded with actor, timestamp and target.
Automated rate limiting prevents abuse and credential-stuffing attacks.
AI never publishes. Reports enter draft state and require an adviser sign-off before they reach a client.
Customer data is never used to train third-party models. Agent calls are scoped to a single request and discarded after.
What happens to your data, end-to-end.
- 01Inbound
Excel and CSV files arrive over an encrypted channel. Storage is locked down to tenant-scoped access — never public URLs.
- 02Processing
Files are parsed in an isolated worker. Agent model calls go to vetted AI providers under contractual no-train policies. Every input, output and decision is written to a trace log.
- 03At rest
Source files and generated reports live in encrypted storage. A managed database holds metadata, access controls and audit history.
- 04Outbound
PDFs are rendered on the server. Reports only reach a client portal once a human adviser has published them.