HisabX logo

HisabX

Privacy Policy & Data Security

calendar_today Last updated: October 24, 2023 verified_user Version 2.4.0
security

100% Data Privacy

HisabX is built on a privacy-first architecture. We do not store your ledger datasets on HisabX servers. All ledger data, transactions, parties, and backups are synced and stored in your connected Google Drive account.

This Privacy Policy describes how HisabX ("we", "us", or "our") handles your information when you use our desktop application and related services. Our primary goal is to provide a powerful ledger management tool without ever compromising your business confidentiality.

database Data Collection

HisabX does not retain ledger datasets on company infrastructure. Data handling is split as follows:

check_circle Stored in Your Google Drive

  • Ledger files and transaction datasets
  • Customer and supplier records
  • Invoices, balances, and reports
  • Encrypted backups and sync history files

cancel Not Stored on HisabX Servers

  • Ledger datasets or transaction entries
  • Customer contact information
  • Business profit/loss statements
  • Inventory, tax, and billing records

lock AES-256 Military-Grade Encryption

enhanced_encryption

All ledger databases created within HisabX are automatically encrypted using the Advanced Encryption Standard (AES) with a 256-bit key. This is the same level of security used by banks and government agencies.

Local Key Generation

Encryption keys are generated on your local machine. HisabX employees or infrastructure never have access to these keys.

Zero-Knowledge Architecture

Because we don't have your keys, we cannot decrypt your data even if compelled by a legal authority.

cloud_sync Google Drive & Private Cloud Sync

For multi-device access, HisabX syncs encrypted datasets directly into your Personal Google Drive. We provide the sync layer, while storage remains fully under your Google account.

  • done_all Data remains in your private folder
  • done_all Files are encrypted BEFORE being uploaded
  • done_all You control the access permissions
cloud_done

User-Owned Storage

We provide the bridge; you provide the destination.

wifi_off

Offline-First Integrity

HisabX is designed to work without an internet connection. All changes made while offline are stored in a local write-ahead log and reconciled only when you choose to connect. This ensures that even in areas with poor connectivity, your business data is never lost or partially synced.

share Third-Party Services

We use a limited number of trusted third-party providers to help us provide the Service:

Stripe

Payment processing and subscription billing.

GDPR Compliant

Postmark

Transactional email delivery (activation codes, receipts).

ISO 27001

Sentry

Anonymous error tracking to improve app stability.

SOC2 Type II

person_edit Your Rights & Control

file_download

Export Data

Download your entire ledger in Excel or JSON format at any time.

delete_forever

Right to Erase

Delete your account and all associated licensing data permanently.

visibility

Access Info

Request a full disclosure of any minimal metadata we have on file.

Questions about our security?

Our security team is ready to provide technical whitepapers or answer specific concerns.

mail Contact Security Team
arrow_upward