Is it safe to upload client financial documents to untxt.?

Documents are encrypted on the way in (TLS 1.3) and while they sit in storage (AES-256). Every connection runs over HTTPS, the same protocol your bank uses, and files go straight into encrypted cloud storage rather than being left sitting on a server.

During processing the document is reached through a short-lived link that expires within the hour, not handed over wholesale. The step that reads the page sees that link, and the step that checks data quality sees only the extracted text, never your original file. Nothing is left open in a third party's system.

untxt. does not use your documents, or the data pulled from them, to train AI models. Files are processed to produce your records, not to improve a model on your clients' books.

You can remove documents and their data in one click, and the deletion is logged so you can show it happened. Deleting a document removes the file, the extracted data, and its activity history. Anything already posted to QuickBooks or Xero stays in your accounting system; removing it there is your call, and you can request full account deletion at any time.

Payments run through Stripe, so your card details go straight to Stripe and untxt. never sees or stores them. Access is gated to the people you invite, every action is tied to who did it with a timestamp, and sessions time out on their own.

untxt. is built with HIPAA technical safeguards in mind, and SOC 2 Type II is in progress. It does not claim a certification it has not earned. If you need a BAA or the current compliance status, ask.