CPA firms audit their vendors — so here are the answers in plain English, before you ask.
It changes workflows, fields, and views — never the codebase, never your client data.
Nothing is applied until you review and approve it. Professional judgment stays with the firm.
Every change is logged and one click from rollback. You can always see who changed what, and when.
TLS in transit, encryption at rest, with field-level encryption for sensitive identifiers like tax IDs.
Hosted in your chosen region, with a privacy-first posture aligned to GDPR, PIPEDA & more. [confirm current region]
Multi-factor sign-in, per-role permissions, and magic-link client access that never needs a client account.
Edit code or infrastructure
Touch client data without approval
File anything automatically
We don't claim certifications we don't hold. SOC 2 is on the roadmap — ask us where it stands, and we'll tell you plainly.
Need the long form for your vendor review?
Request our security overview →Practice management that shapes itself to your firm. Free for accounting and tax firms.
howard@docket-systems.com