Skip to main content

Is My Data Safe?

Yes. Here's the short version.

  • Financial records are never permanently stored. Invoices, time entries, and cost rates live in your PSA. ProLens fetches them live, computes aggregates, and holds the result in a 15-minute cache. Nothing financial gets persisted to our database.
  • Credentials use AES-256-GCM envelope encryption. Each connection's token gets its own data encryption key, wrapped by a master key in our environment.
  • Every data access is logged. You can see who (or what) accessed your data, when, and what scope it touched at Settings → Security.
  • Our staff cannot access your data without permission. The codebase has no "impersonate tenant" or "view as" path. Even PLATFORM_ADMIN users see only their own tenant.
  • Connections to ProLens use HTTPS (TLS terminated by Vercel at the edge).

For the long version with architecture diagrams, SOC 2 status, and our subprocessor list, see prolens.io/security.