Security

Last updated: March 20, 2021

Data Access

Our Staff does not access your data as part of our normal operating procedures. All customer data is access controlled by the customer. Any access by our staff must be accompanied by customer approval, why access is needed, and a log of the length of access time. In certain situations in which we maybe legally required to access data.  Any violation of our access policies by staff will result in immediate termination.

To maintain proper database functions, we do analyze anonymous data as stated in our privacy policy.

Complex User passwords are required when setting up your account. All passwords must be at least eight characters long and contain one of each alphanumeric and special characters.

We utilize encryption when storing and transmitting user passwords. Even if our database was accessed by an unauthorized individual, they would not be able to determine your password without using an extremely length and slow process.

Infrastructure

We utilize Microsoft Azure services for our backend infrastructure. Microsoft Azure utilizes enterprise grade policies and procedures to manage risk and security of your data.

Data Retention

Our policy it to retain your data for the length of time as describe below.

User accounts and data, including receipts, will be deleted after:

1. Trial accounts for which a subscription was never purchased, the account and data will be deleted after one hundred eighty (180) days from the expiration of the trial period.
2. After an expired subscription, we will delete accounts and data three years after the expiration of the users subscription.

Transaction Importing

Ledger Perfect has partnered with MX, a financial data aggregation specialist within the bank sector.  Through our partnership the Service utilizes this data aggregation to collect your account transaction data from your financial institution and transmit it to our system. You authorize MX to perform the process of aggregating this data and carry out the transfer to our Service on your behalf.  Ledger Perfect does not view or store your financial account credentials. In some cases, you maybe asked by your bank to authorize sharing as part of the OAuth process. The Service does not directly provide this request but is made using the MX aggregation process. We rely on our partners and their industry-leading security systems to ensure your information is safe no matter the method of aggregating your transactions.

To learn more about MX's security polices and practices, please visit their website.

Internet Traffic

The Service utilizes bank-grade or higher encryption methods when data is sent between your device and servers.

Communication Security

Company staff will never initiate communication with you seeking your login credentials via any communication medium. As with any service we urge you to be extremely diligent to prevent phishers from coning you out of your login information. 

Contact Us

If you have any questions about our security, You can contact Us:

• By visiting this page on our website: www.ledgerperfect.com/contact