Security

How we protect your data

Headroom holds your financial picture and Serai holds your records — so security isn’t a feature, it’s the floor. Here’s how we treat it, in plain language.

Encrypted, everywhere it matters

Your data is encrypted in transit using TLS and at rest using industry-standard encryption. Encryption isn’t a paid tier — every account gets the same protection.

Access is the exception

Production access is limited to the few people who operate the service, with role-based permissions and audit logs. Nobody browses your data.

Where your data lives

Cairnby runs on established cloud infrastructure in secure, certified data centers in the United States.

How AI handles your documents

When you capture a receipt or document, AI extracts the details and files them in your encrypted keep. Your content is not used to train models and is never sold.

Found something? Tell us

We welcome responsible disclosure. Write to security@cairnby.com and we’ll respond quickly — and credit you if you’d like.