Skip to content

Security

Last updated: March 4, 2026

We take security seriously and design our systems to protect sensitive financial data.

Security posture

We maintain a risk-based security program and continuously improve controls as our systems evolve. Security statements on this page describe current safeguards and are not a guarantee that incidents can never occur.

Core safeguards

  • Encryption in transit and at rest for sensitive data.
  • Role-based access controls and least-privilege policies.
  • Multi-factor authentication for privileged access.
  • Monitoring and alerting for suspicious activity.

Operational controls

  • Secure cloud infrastructure with vetted providers.
  • Backups and recovery procedures for critical systems.
  • Vendor oversight for systems that process sensitive data.
  • Professional oversight for sensitive tax workflows.

Compliance posture

We are building toward SOC 2 readiness and maintain documented security policies and procedures. Unless explicitly stated otherwise, we do not claim SOC 2 certification.

Incident response

We maintain response procedures to investigate, contain, and remediate security events. If notification is required, we provide notices in accordance with applicable law.

Reporting a security issue

If you believe you have found a security vulnerability, please report it through our contact form or email dev@financials.tax with “Security” in the subject. We aim to respond promptly.