Security
How ArnBooks handles bookkeeping data
ArnBooks is built for founder-operators who need a safer way to review bookkeeping gaps before month-end. This page explains what ArnBooks reads, what it does not do from diagnostic flows, and how to ask for data deletion.
Last updated: July 1, 2026.
Diagnostic-first
The close-readiness and payout-mismatch flows are designed to identify review items, not silently change your books.
No fake security claims
ArnBooks does not claim SOC 2, bank-grade security, or audit-proof protection. We describe the controls we actually use.
Deletion path
You can request deletion of workspace data. We delete personal and connected-source data within 30 days unless retention is legally required.
What ArnBooks reads
When you connect a source such as QuickBooks Online, Stripe, Shopify, PayPal, or upload a CSV or receipt file, ArnBooks reads the data needed to produce bookkeeping review notes, payout mismatch checks, source-gap lists, and close-readiness summaries.
Typical data includes transactions, payouts, account names, vendor or customer names, receipt images or PDFs, timestamps, amounts, categories, and related workspace metadata.
What diagnostic flows do not do
ArnBooks diagnostic flows are meant to show likely gaps and review items before you send the month to your accountant or make changes in your books.
- They do not replace your bookkeeper, accountant, tax advisor, or legal advisor.
- They do not make your books tax-ready or audit-proof.
- They do not guarantee that every issue has been found.
- They do not write changes to QuickBooks from the diagnostic report flow.
Access, tokens, and providers
ArnBooks uses official provider authorization flows where available. Connected-service tokens are used to access the data you authorize and are handled server-side. ArnBooks relies on service providers for core infrastructure, including hosting, authentication, payments, database storage, AI/OCR processing, and analytics as described in the Privacy Policy.
You can disconnect source systems from ArnBooks settings where available, or from the source provider account. If a disconnect option is not visible, email us and we will help remove the connection.
Data retention and deletion
ArnBooks keeps workspace data while your workspace is active so the product can show historical review notes and support month-end workflows. If you delete your account or request deletion, ArnBooks deletes personal data and connected-source data within 30 days, except for limited records we are required to keep, such as billing records.
To request access, correction, export, or deletion, email hello@arnbooks.ai.
Security limitations
ArnBooks is an early product. We do not pretend to have enterprise certifications that are not yet in place. We do use role-based application access, provider authorization flows, server-side handling for sensitive integration work, and minimal-data processing principles.
If you need a specific security review before connecting data, email us with the requirement. We will answer plainly rather than overstate the product.
Not ready to connect accounting data?
Use the lowest-trust path first: start with a CSV or a clearly labeled demo/sandbox walkthrough before connecting live accounting systems. ArnBooks should earn the connection, not demand it upfront.