Your clients trust you with their financial data. We take that responsibility seriously. Here is exactly how we protect it.
Multiple independent layers of protection — from the moment data enters our platform to the moment it leaves.
All client data stored within the Y-Accounting platform is encrypted using AES-256 — the same standard used by financial institutions and government agencies worldwide. Encryption keys are managed separately from the data they protect, using industry-standard key management systems with automatic rotation.
All data transferred between your systems and Project Y is protected by TLS 1.3 — the current gold standard for transport encryption. Older, insecure protocol versions (TLS 1.0, 1.1, SSL) are disabled entirely. Certificate pinning is applied to prevent man-in-the-middle attacks.
Access to your firm's data is governed by strict role-based permissions. Each user sees only the data relevant to their role. Multi-factor authentication is required for all accounts. Administrative access to infrastructure requires hardware security keys and is limited to a small, audited set of personnel.
Every action taken within the platform — by AI Associates, your team members, or Y-Accounting team — is logged with a full audit trail. Logs are immutable, tamper-evident, and retained for a minimum of 24 months. Your firm can access its own audit log at any time through the management dashboard.
European firms can elect to have all data stored and processed within the European Economic Area (EEA). We operate on AWS infrastructure with primary data centres in Ireland (eu-west-1) and Frankfurt (eu-central-1). Data does not leave your chosen region without explicit consent.
Each accounting firm's data is logically isolated from all others. Our multi-tenancy architecture ensures that no firm's data can be accessed by another firm's instance of the platform. Isolation is enforced at both the application and database layer.
We conduct regular penetration testing with independent third-party security firms. Vulnerability assessments run continuously on all infrastructure components. A responsible disclosure programme is in place and security researchers are encouraged to report findings confidentially.
Our infrastructure is designed for high availability with no single points of failure. Automated backups run every 6 hours with 30-day retention. Recovery time objective (RTO) is under 4 hours; recovery point objective (RPO) is under 6 hours. Disaster recovery is tested quarterly.
Y-Accounting acts as a data processor on behalf of your firm. Your firm retains data ownership and control at all times. We process your clients' data only to deliver the services you've contracted us to provide — never for advertising, model training, or sale to third parties.
South African firms — We operate in full compliance with the Protection of Personal Information Act (POPIA). We are registered with the Information Regulator and apply all required safeguards for the processing of personal information on behalf of South African accounting practices. Our POPIA Compliance Framework and operator agreement are available on request.
European firms — Our Data Processing Agreement (DPA) covers all required GDPR obligations for EU-based firms and is compatible with UK GDPR for firms based in the United Kingdom.
Subject access requests, data deletion requests, and data portability are supported for clients under both POPIA and GDPR, handled within the respective statutory timeframes.
You own your data. Always. We have no right to use your clients' financial data beyond service delivery.
Your firm's data is never used to train AI models that serve other customers. Your workflows remain yours.
If you leave Y-Accounting, all your data is deleted within 30 days of contract termination — verifiably and permanently.
We maintain a public sub-processor list. You are notified at least 30 days before any new sub-processor is added.
Our AI Associates are built with explicit boundaries — and designed to escalate rather than guess.
AI Associates never send client communications without human review and approval. Your team controls what goes out — always.
When an AI Associate encounters ambiguity, complexity, or an exception it hasn't been trained on, it flags the item for human review — it does not attempt to resolve it alone.
AI Associates operate within strictly defined workflows. They do not have access to systems, data, or actions outside their configured scope. Permissions are explicit and auditable.
Every action taken by an AI Associate is logged with a rationale. Your team can review exactly what was done, why, and when — at any point in time.
Our security team is available to discuss specific requirements, provide additional documentation, or work through your firm's procurement process.
Contact Security Team →