Secure by Design
We treat your financial data with the highest level of security, privacy, and compliance.
Built on zero-trust principles.
Our entire infrastructure is designed to assume no request is trusted until explicitly verified via multi-layered authentication.
Private Document Vault
Your receipt images and invoice PDFs are stored in securely isolated, private storage buckets. They are never exposed directly to the public internet.
Signed URLs
When you view a document, our server generates a cryptographically signed URL that expires in 5 minutes, ensuring time-limited access.
Strict Workspace Isolation
Data is logically partitioned by workspace. Even if you share an account with your family, your freelance LLC workspace data is logically isolated and strictly partitioned.
Role-Based Access Control
Assign accountant roles with read-only access, or dependent youth roles with restricted ledger views. Control exactly who sees what.
Encryption in Transit & At Rest
All connections are secured via TLS 1.3. Your database is encrypted at rest using AES-256 standard encryption.
Automated Backups
Your data is continuously backed up with point-in-time recovery to minimize data loss and ensure rapid recovery in the event of an infrastructure failure.
GDPR Alignment & Future Roadmap
SunFin is built from day one to align with GDPR and CCPA principles. You own your data. We provide one-click CSV exports of your entire ledger so you can retrieve your information at any time, and mechanisms to fully delete your data if requested. We are currently working towards SOC2 Type II compliance.