Security

The service is designed around private uploads, short retention, minimal metadata, and no emailed bank PDFs.

Controls

• Private object storage for uploaded PDFs and generated CSV files.
• Random job IDs and tokens for job access.
• No public object URLs.
• Source PDF deletion after conversion or failure.
• Security headers and no-store caching on API responses.

Limits

The MVP currently accepts PDF files up to 20 MB. Unsupported or low-confidence files fail closed.