Security

Bank statements are sensitive. Here is exactly what happens to yours.

• Encryption in transit

  Every upload and download uses TLS 1.3. Your file never crosses the network in plaintext.

• Short retention

  Original PDFs are deleted within 24 hours of upload. Converted outputs (XLSX, CSV) are retained while your account is active so you can re-download them, and deleted on account closure.

• No AI training on your data

  We use Google's paid Gemini API for PDF parsing. Per Google's terms, content submitted to the paid API is not used to train models. We never send your files to any other model.

• Isolated processing

  Files are processed in memory on our servers and written only to a short-lived staging area. Nothing is persisted to a permanent store.

• Access control

  Conversions tied to an account are only downloadable when signed into that account. Anonymous conversions expire when the session ends.

Found a security issue? Please email us and we'll respond within 24 hours.