SECURITY & TRUST

The security layer your ERP was never built to have.

The problem

The fear isn't that AI is useless on financial data — it's that one prompt exposes executive comp, an unreleased number, or another entity's books. Accounting systems can't prevent that: they have no row-level security, no column masking, no gate to enforce who sees what on every query. The risk isn't the model — it's the ledger underneath it.

How it works

Six guards around your ledger — always on

Your ledger

all guards, always on

Is it you?

2FA enforced

Trusted place?

IP allowlist

Right key?

audience-bound

Allowed to see?

role · scope · ceiling

Person cleared it?

approved snapshot

Sealed pipes

encrypted · HMAC

Your ledger

all guards, always on

Is it you?

2FA enforced

Trusted place?

IP allowlist

Right key?

audience-bound

Allowed to see?

role · scope · ceiling

Person cleared it?

approved snapshot

Sealed pipes

encrypted · HMAC

Tenant isolation

Logical separation at the dataset layer — no cross-tenant reads, by design. Your data is never co-mingled with another organization's.

Approved snapshots only

Nothing unpublished ever crosses the boundary. Agents query human-approved, immutable snapshots — not live ERP state.

Query-time enforcement

Row scope and column masking applied in one shared layer on every request. There is no surface that bypasses these checks.

Audit trail

Append-only — cannot be edited or deleted; instant revocation on any session

Encryption

In transit and at rest · US data residency · named sub-processors

Compliance

Designed to SOC 2 Type II standards; report targeted

Processor role

GDPR · CCPA · processor role only; no training on customer data