Security

Your uploaded PDF is encrypted, used only to extract your transactions, and automatically deleted within 24 hours of conversion. We don't retain the contents of your statement — transaction descriptions and amounts aren't kept once your conversion completes. We hold only your account record and a monthly page-usage count.

All data is transmitted over TLS 1.2+ (HTTPS). Data held by our infrastructure providers is encrypted at rest using their platform defaults.

Payments are processed by Stripe, a PCI-DSS Level 1 provider. Your card details go directly to Stripe — Ledger Pilot never sees or stores your full card number.

Accounts are secured by Supabase Auth. Database access is protected by row-level security so that each account can only read its own data. The extraction service only accepts requests from our own backend.

We collect the minimum needed to run the service: your email, your subscription status, and how many pages you've converted this month. Nothing about the substance of your statements is retained once your conversion completes.

Found a vulnerability? Please email security@ledgerpilot.com.au and give us a reasonable chance to fix it before public disclosure. We appreciate your help.