SyncBook is built with security-first architecture. Every layer of the system — from authentication to database queries — is designed to protect your clients' financial data.
SyncBook is designed to meet UK regulatory requirements for accounting software.
Data minimisation, purpose limitation, right to erasure support
VAT returns generated in Making Tax Digital compatible format
Financial calculations follow UK Generally Accepted Accounting Principles
Information security management aligned with ISO 27001 framework
Document retention and audit trail requirements met
| Component | Security Measures |
|---|---|
| Node.js Backend | JWT + refresh rotation, bcrypt, RBAC on every route, rate limiting, Helmet.js, CORS, parameterised queries |
| Python ML Service | Internal-only (not public), API key required, payload size limits, timeout handling, request validation |
| Electron Desktop App | DevTools disabled in production, encrypted local token storage, auto-update signature verification |
| Client PWA | JWT in httpOnly cookie, no sensitive data in localStorage, HTTPS enforced |
| Database | Parameterised queries, firm_id isolation on every query, least-privilege DB user |
| Audit Layer | Append-only logs, every financial action tracked, before/after values, IP address logging |