Security & Data Retention
ReconCore is designed for organizations that reconcile sensitive financial data under audit scrutiny. Our architecture prioritizes confidentiality, least-privilege access, and time-bounded storage of uploaded files.
Zero retention policy
- Uploaded workbooks and reconciliation outputs are deleted within 24 hours of upload.
- A scheduled purge process removes files from object storage and marks associated jobs as deleted.
- Cloud storage lifecycle rules serve as a secondary control if the purge scheduler is delayed.
- Customer files are not used to train models, build derivative datasets, or improve third-party services.
Encryption and access controls
- All client-server communication is encrypted in transit via TLS.
- API endpoints require authenticated sessions; reconciliation requires an active subscription.
- One active session per account; signing in elsewhere ends the previous session immediately.
- Files reside in private object storage — not exposed via public URLs.
Metadata we may retain
Account identifiers, subscription status, job timestamps, and aggregate result summaries (counts and variances — not row-level data) may be retained for billing, support, and operational purposes. Original spreadsheets and output workbooks are not retained beyond the 24-hour processing window.
Questions regarding our policies? Contact our team