Security

Your firm's data, protected.

Enterprise-grade infrastructure securing every query, every document, and every connection across the country.

US data residency & compliance

Your data never leaves the US

All client data is stored and processed exclusively within US-based infrastructure. No data is transferred, replicated, or processed outside the United States — ever.

IRC §7216 & §6713

Denari is built to comply with IRC §7216 restrictions on the disclosure and use of tax return information, and §6713 penalties for unauthorized disclosure — so your firm stays compliant by default.

Written Information Security Plan

Denari maintains a formal WISP aligned with the IRS Safeguards Rule, FTC Safeguards Rule, and the Gramm-Leach-Bliley Act (GLBA) — meeting the standard your firm is held to.

Certifications & audits

AICPA SOC

SOC 2 Type II

Independently audited against the AICPA Trust Services Criteria for security, availability, and confidentiality. Reports available under NDA upon request.

ISO 27001

ISO 27001In progress

Certified information security management system (ISMS) covering the design, development, and operation of the Denari platform.

ISO 42001

ISO 42001In progress

Certified AI management system ensuring responsible development, deployment, and governance of artificial intelligence across the platform.

Data security

Encryption

All data encrypted at rest and in transit. Firm and client documents are stored with dual-layer server-side encryption (DSSE).

AI data privacy

Firm or client data is not used for AI model training.