Security & Data Handling

Your data security is our highest priority. TieOut is built with a security-first architecture that minimizes risk at every layer.

Browser-Only Processing

All data processing happens entirely within your browser. Your financial data never leaves your device and is never transmitted to our servers. This zero-knowledge architecture ensures that even we cannot access your sensitive financial information.

No Server-Side Storage

TieOut does not store any of your uploaded data. Once your session ends, all processed information is permanently deleted from memory. We maintain no persistent storage for user-uploaded files, ensuring complete data sovereignty.

Encryption in Transit

All communications between your browser and our servers are protected with TLS 1.3 encryption. This ensures that any metadata or session information transmitted during your visit is protected against interception and tampering.

Deterministic Verification

For audit purposes, TieOut computes cryptographic digests of both inputs (InputDigest) and outputs (OutputDigest) using SHA-256. This enables verification that results are consistent with the original data, providing transparency into the processing pipeline.

Compliance Roadmap

TieOut is committed to achieving industry-standard security certifications. Our compliance roadmap includes SOC 2 Type II certification planned for 2025, along with ongoing security audits and penetration testing.

Responsible Disclosure

For security vulnerability reports, data processing agreements (DPA), or security-related inquiries, please contact:

security@tieout.app