Wauvel
Your data

Your numbers are yours.

Financial data is sensitive, so here's exactly what happens to it — written plainly, so you can decide you're comfortable before you hand Wauvel a single number.

Encrypted in transit and at rest

Your files and financial data travel over HTTPS and sit on encrypted disk storage. Standard for any serious app — worth saying plainly.

Only your account can see your data

Per-user storage paths plus database row-level security. Even our own infrastructure can't pull up your numbers without going through the same auth wall you do.

Connected through Intuit, never your password

QuickBooks links over Intuit's official sign-in, so your QuickBooks credentials never reach us. The tokens that authorize the connection are encrypted at rest and never stored in plaintext.

QuickBooks access is read-only — and yours to cut

We only read your financial reports — profit & loss, balance sheet, cash flow. We can't write to, change, or move anything in your books. Disconnect anytime and the access is revoked at Intuit and the connection deleted.

Read by Claude, never used to train models

The AI that reads your statements is Claude, by Anthropic. Their API terms explicitly forbid training on customer data. Your numbers go in, your commentary comes back — that's the whole loop.

The AI doesn't know whose books it's reading

Your name, email, business name, and file names never reach the model. It sees the numbers and the line-item categories, then writes the read blind to who you are.

A strict Content-Security-Policy

The app enforces a strict CSP to shut down whole classes of injection and data-exfiltration attacks, and publishes a security.txt (RFC 9116) so researchers have a clear way to report anything.

Never sold, never shared

No data resale. No analytics piped to third parties. No advertiser pixels. Your data exists to produce your reports — that's it.

Delete your data anytime

Email hello@wauvel.com and we'll wipe your files and reports within 24 hours. Self-serve deletion is coming to the dashboard.

Report a security issue

Found something? Email hello@wauvel.com — you'll hear back from a human. Our disclosure details live at /.well-known/security.txt. For how we handle data day to day, see the privacy policy.