Your data, encrypted. Your rules, enforced.
How we store, encrypt, audit, and respect your data — and the short list of things we will never do with it.
Six things we promise.
AES-256 encryption at rest
Every record stored encrypted. Per-row keys for tax documents (W-2Gs) so a single breach can't compromise your whole tax history.
TLS 1.3 in transit
Every request between your browser and our API is encrypted. We don't accept connections below TLS 1.2.
Audit log on every read
When a host (or a sharing link) reads your data, the access is logged with timestamp, source IP, and user agent. You can review the log at any time.
MFA + passkey support
Time-based one-time passwords (Google Authenticator, Authy, 1Password). WebAuthn passkeys for FIDO2-secured passwordless sign-in.
Full export, any time
JSON or CSV, includes audit log and your full session history. One click, no friction. We don't lock your data in.
Hard delete, fulfilled in 24h
Delete = gone. We don't soft-retain after deletion (other than legally-required tax retention windows, which we surface clearly before you confirm).
Five things we will never do with your data.
In our terms. In our practice. If we ever change one of these, we’ll tell you 90 days in advance and you can export and leave with everything intact.
- We never sell or rent your data.
- We never aggregate it for resale.
- We never train AI models on it.
- We never share it with hosts unless you explicitly send a Share Link.
- We never run third-party analytics or ad pixels in the authenticated app.
Read the fine print.
We keep our policies short and in plain language. Click through if you want the full details.