Security
GetSorted takes the security of your data seriously. We handle sensitive financial information including income figures, tax references, and HMRC credentials — and we treat that responsibility with the highest standard of care.
Our security practices
- All data encrypted in transit (TLS) and at rest
- HMRC OAuth tokens stored server-side only — never in the browser
- Row-level security enforced at database level
- Sensitive fields (UTR, NINO) encrypted with AES-256
- Full audit trail of all HMRC API interactions
Report a vulnerability
To report a security vulnerability or incident, please email securitygs@oshylabs.eu
We aim to respond to all security reports within 24 hours.
If you believe your account has been compromised, please contact us immediately and change your password.