How Billtiq protects your
invoice data and workflows.

All customer data is stored in PostgreSQL on AWS infrastructure (via Supabase) with AES-256 encryption applied to the underlying disk volumes. Database backups are encrypted with the same standard.

All traffic between your browser, our servers, and our database uses TLS 1.3 with HSTS enforced. We never accept unencrypted connections. SSL certificates are managed and auto-rotated by Vercel and Render.

Your ERP credentials (Oracle Fusion passwords, OAuth tokens, API keys) are stored encrypted at the database level and only decrypted server-side at the moment of API calls. They are never exposed to the browser or our logs. Service-role database keys are isolated to backend infrastructure.

PostgreSQL Row-Level Security policies ensure that customer A's invoices, vendors, and POs are physically inaccessible to customer B — even from within the database itself. Every query is filtered by team membership at the database level.

Three roles inside each customer team:

• Admin: Full access — invite members, configure ERPs, manage billing, mark invoices as paid
• Member: Process and approve invoices, view team data — cannot delete or modify billing
• Supplier: View only their own submissions, cannot see team data

Email and password (bcrypt-hashed, never stored in plain text) or Google OAuth. Passwords require minimum 8 characters with mixed-case, numbers, and symbols. Email verification required on signup. Login attempts are rate-limited at the platform level to prevent brute-force attacks.

Every action on every invoice is logged: created, edited, approved, rejected, pushed to ERP, payment confirmed. Each entry shows the user, timestamp, IP address, and what changed. Exportable for SOX, internal audits, and finance reviews.

We are pursuing SOC 2 Type II certification. The full report will be available to enterprise customers under NDA once complete. Until then, we operate to the same control standards and can provide a Security Posture Document on request.

All data is currently hosted in US-based AWS data centers (us-east-1). EU and other regional data residency options are on our roadmap for enterprise customers — please contact us if this is a current requirement.

Daily encrypted database backups are retained for 7 days (Starter), 30 days (Growth), and 90 days (Enterprise). Point-in-time recovery is available within the retention window. Backups are stored in a separate AWS region from the primary database.

Public health checks every 5 minutes. Real-time alerts on any service degradation. Enterprise customers receive contractual SLA commitments (target: 99.9% monthly uptime).

External penetration testing scheduled as part of our SOC 2 process. Reports will be available to enterprise customers under NDA.

Billtiq uses Anthropic's Claude API to extract data from invoice PDFs and assist with classification. Important details:

• Your invoice data is never used to train Claude or any other model
• Anthropic processes data only for the duration of the API call and does not retain it for training
• You can request a full data deletion at any time
• Confidence scores are surfaced for every extracted field — low-confidence values are flagged for human review, never silently pushed to your ERP