Security & Trust

Your financial data
is safe with us.

We handle QuickBooks OAuth tokens and real transaction data. Here is exactly how we protect it, with no marketing fluff.

🔒   Last updated: April 2026  Â·  Questions? Email [email protected]
Encrypted in Transit
All traffic uses HTTPS/TLS 1.2+. No unencrypted connections accepted.
Read-Only by Default
We never transfer money, access bank logins, or store your passwords.
Right to Delete
Cancel anytime and request full deletion of your data within 30 days.
Never Sold
Your data is never sold to third parties, advertisers, or data brokers.
Intuit-Certified OAuth
QuickBooks connection uses Intuit's official OAuth 2.0. We never see your QB password.
Minimal Data Principle
We only store what's needed to run your books review. Nothing more.
01 · QuickBooks Integration

How We Access Your QuickBooks Data

We connect to QuickBooks using Intuit's official OAuth 2.0 protocol, the same standard used by major enterprise software. Here is exactly what we can and cannot do.

🔑 How the connection works

You log in to Intuit directly. LedgerAI never sees your QuickBooks username or password. Intuit issues us a short-lived access token (valid 60 minutes) and a refresh token. We use these tokens to read your transactions and update categories. Tokens are stored in our managed PostgreSQL database, which uses volume-level encryption at our hosting provider. We do not currently apply application-layer encryption to individual token fields.

✓ Read all transactions (purchases, expenses)
We pull your transaction history to categorize and review it.
✓ Read your Chart of Accounts
Required to map transactions to the correct expense categories.
✓ Update transaction categories
When our AI is confident, we update the category directly in QuickBooks. You control the confidence threshold: set it higher to review more items manually.
✓ Read P&L reports
Used to calculate your income total for the books review summary.
✗ Transfer money or make payments
We have no permission to initiate any financial transactions. This is not technically possible with our OAuth scope.
✗ Access your bank login or passwords
All authentication goes through Intuit's servers. We receive tokens, not credentials.
✗ Delete transactions or modify your chart of accounts
We only update the category field on existing transactions.
02 · Data Storage

What We Store and How Long

We follow a minimal data principle. We only store what is necessary to run your books review and improve accuracy over time.

What We Store Why Retention
Your name and email Account login and notifications Until account deleted
QuickBooks OAuth tokens Access your QB account during reviews Deleted when you disconnect QB
Transaction summaries (vendor, amount, date, category) Display your books review history; apply vendor rules Until account deleted
Vendor rules you create Remembers how to categorize specific vendors for your business Until you delete them or cancel
Audit job history Track review progress, retry failed updates 90 days
Session tokens Keep you logged in 30 days (or until logout)
Stripe billing ID Manage your subscription Until account deleted
What we do NOT store

Full transaction raw data beyond what's needed for your review · Your QuickBooks password · Bank account numbers · Social Security numbers · Tax returns · Any data from third parties.

03 · Infrastructure

Where and How We Run

Technical details for those who want them.

✓ Hosted on US-based cloud infrastructure
We run on enterprise-grade infrastructure with automatic TLS, DDoS protection, and high availability. Your data does not leave US servers.
✓ PostgreSQL database with encrypted connections
Your data is stored in a managed PostgreSQL instance. All database connections require TLS. Backups run daily.
✓ HTTPS enforced on all endpoints
All HTTP traffic is redirected to HTTPS. We use TLS 1.2 minimum, with TLS 1.3 preferred. HSTS is enforced.
✓ Credentials never stored in code
API keys, OAuth secrets, and database credentials are never stored in code or version control. They are managed through encrypted secrets management.
✓ Stripe handles all payment processing
We never see or store your credit card number. Stripe is PCI-DSS Level 1 certified, the highest level of payment security.
04 · Your Rights

What You Can Do With Your Data

You own your data. We do not.

✓ Export your data at any time
Email [email protected] to request a full export of your account data in JSON or CSV format. We'll deliver it within 5 business days.
✓ Delete your account and all data
Cancel your subscription and request deletion. We'll permanently remove all your data (transactions, vendor rules, and tokens) within 30 days and confirm by email.
✓ Disconnect QuickBooks at any time
Go to the QuickBooks tab in your dashboard and disconnect. This immediately invalidates our access tokens. You can also revoke access directly from your Intuit account settings at accounts.intuit.com.
✓ Correct inaccurate data
All vendor rules and transaction corrections are editable from your dashboard. For account-level corrections, contact us at [email protected].
✓ Know if we've had a breach
In the event of a security incident affecting your data, we will notify you by email within 72 hours of discovery, describe what happened, what data was affected, and what steps we are taking.
05 · AI & Third Parties

What We Share With Third-Party Services

We use a small number of trusted services to run LedgerAI. Here is exactly what each one sees.

Service What They See Why
Anthropic Claude API Vendor name, transaction amount, date, current QB category AI categorization of unknown vendors. No personal identifiers are sent.
Intuit / QuickBooks OAuth tokens (they issued them) Required to read and update your QuickBooks data
Stripe Your email and billing info Subscription billing and payment processing
Resend Your email address and email content Sending transactional emails (login links, reports)
Railway Hosts all application data Cloud infrastructure and database hosting

We do not use Google Analytics, Facebook Pixel, or any advertising tracking on the dashboard or login pages. No one is watching what you do inside your account.

06 · Compliance

GDPR & CCPA

We serve businesses in the United States. We are committed to complying with applicable privacy laws.

✓ California residents (CCPA)
You have the right to know what personal data we collect, request deletion, and opt out of data sale (we don't sell data). To exercise these rights, email [email protected].
✓ EU/UK residents (GDPR)
You have the right to access, rectify, erase, and port your personal data. You may also object to or restrict processing. Contact us at [email protected] and we will respond within 30 days.
✓ Data processing agreements
If your business requires a Data Processing Agreement (DPA) for compliance, email us and we will provide one.

Questions about your data?

We'll answer any question about what we store, how we protect it, and how to delete it. No run-around.

Email [email protected]