We take the security of your clients' financial data seriously. Here's how we protect it.
All data encrypted in transit (TLS 1.3) and at rest (AES-256). Passwords hashed with bcrypt.
Hosted on AWS in SOC 2 certified data centers. Production access restricted to a small team with MFA required.
Continuous backups with point-in-time recovery. Tested restore drills quarterly.
Every financial mutation is logged with user, timestamp, and change record. Logs are immutable.
SOC 2 Type I in progress. Type II planned for late 2026. GDPR compliant.
Found a security issue? Email security@ledgerly.app — we respond within 24 hours.