Data posture for advisory firms

Designed for the data discipline a CFO firm wants to defend.

ADK Intel is intentionally not a ledger, payroll system, or tax filing tool. We give you the advisory layer - with upload-first ingestion, advisor-in-the-loop AI, and firm-scoped isolation that keeps liability exposure low without slowing the work down.

Four principles

How ADK Intel reduces sensitive data exposure.

No PII required

We don't request SSNs, tax IDs, bank account numbers, employee identifiers, customer PII, or PHI. Ever.

Upload-first by design

No raw bank feeds, no required system integrations. Advisors control exactly what enters the platform.

Scrubbed-data gate

Every upload requires explicit advisor acknowledgment that sensitive fields have been removed before processing.

Advisor-in-the-loop AI

AI drafts, advisors verify. Nothing reaches the client portal without explicit approval.

Controls

The control surface a CFO firm expects.

Identity & access

Email + password and Google SSO out of the box
Firm-scoped role model: admin, advisor, viewer
Granular per-client advisor assignments
Server-side enforced role checks via SECURITY DEFINER helpers
Optional SSO and audit logs on Infrastructure tier

Data isolation

Row-level security on every domain table, scoped by firm
Storage objects keyed to firm folders - no cross-firm reads or writes
Hardened bootstrap path: no client-side path to admin escalation
Service-role keys never reach the browser bundle
Per-firm data export and deletion on request

Infrastructure

TLS 1.2+ in transit, AES-256 at rest
Encrypted, region-pinned managed Postgres
Daily backups with point-in-time recovery
Edge-deployed application layer with global low-latency
Continuous dependency vulnerability scanning

Workflow controls

Scrubbed-data acknowledgment on every upload
Confidence-scored AI suggestions - nothing finalizes silently
Portal visibility is explicit per artifact, never default-on
Audit trail of meeting summaries, action items, and exports
Engagement-level archive & soft-delete with retention policy

AI posture

AI is an assistant, never an authority.

Every AI output in ADK Intel is treated as a draft. Variance commentary, meeting summaries, action items, and forecast assumptions surface as confidence-scored suggestions - they enter the firm's workflow only after an advisor accepts them.

No client data is used to train external models.

Inference runs through a managed gateway, not raw vendor SDKs in the browser.

Transcripts are processed in-tenant and tied to the firm's storage scope.

Every advisor accept/reject is logged for audit.

Sensitive fields can be redacted before AI sees them.

AI outputs are versioned alongside the source artifact.

At a glance

Security factsheet.

Encryption in transit

TLS 1.2+

Encryption at rest

AES-256

Database isolation

RLS per firm

Backups

Daily · PITR

Hosting

Edge + managed Postgres

Auth

Email · Google · SSO (Infra)

Data residency

Available on Infrastructure

Audit logs

Operator & Infrastructure

SOC 2 Type II in progress. Custom DPAs available for Infrastructure customers.

Boundaries

What ADK Intel will - and won't - do.

We will

Centralize the advisory layer above your client's ledgers
Ingest scrubbed exports from QBO, Xero, NetSuite, Stripe, Gusto and more
Draft variance commentary, summaries, and prep packets for advisors to verify
Surface anomalies, triggers, and runway risk across the firm
Give clients a polished, advisor-controlled view of the work

We won't

Store SSNs, tax IDs, or bank account numbers
Replace your client's bookkeeping or ERP system
File taxes, run payroll, or move money
Auto-send AI outputs to clients without advisor review
Share data across firms or expose it to other tenants

Need a deeper review for procurement?

We work with advisory firms whose clients require formal vendor security reviews, custom DPAs, or data residency commitments. We're happy to walk your team through it.

Request security review See pricing tiers

Start now