Quaestor Ledger

Security & Trust

Built for financial data that deserves a short trust answer.

Quaestor Ledger handles connected accounts, multi-currency ledgers, receipts, and AI questions with layered safeguards: encrypted storage, read-only bank sync, scoped access, and clear AI data-use boundaries.

Encrypted financial data

Quaestor Ledger uses encryption in transit and at rest, plus access controls and monitoring, to protect ledger, receipt, and account data.

Read-only bank connections

Bank links are created through Plaid. Quaestor does not receive your bank login credentials and cannot initiate payments, transfers, or money movement.

Session-scoped AI access

The AI assistant answers through read-only tools scoped to the authenticated session, organization, and user context for that request.

What read-only means

Quaestor Ledger connects accounts through Plaid. You authenticate with your financial institution through Plaid’s hosted flow, and Quaestor receives access scoped to financial data needed to power the ledger. Quaestor cannot move money, initiate transfers, make payments, or change your external bank accounts.

You can also use CSV or QIF imports for institutions outside Plaid coverage or accounts you prefer to manage manually.

How AI is walled off

Quaestor Intelligence is designed as a read-only assistant over your own ledger. Each chat request is scoped to the authenticated user and organization for that session, and the assistant can only answer through approved read-only data paths.

Your ledger, receipts, OCR text, categories, accounts, and transactions are treated as private customer data. Quaestor Ledger does not use that data to train AI or intelligence systems, and AI services are configured to restrict training use of customer content where available.

Security controls

  • Bank credentials stay with your institution and Plaid, not Quaestor Ledger.
  • Connected-bank access is data-only for supported account, transaction, balance, and liability information.
  • Financial records are isolated by authenticated account and organization context.
  • AI chat uses read-only access paths and treats ledger, receipt, and OCR content as data, not instructions.
  • Quaestor Ledger does not use your personal financial data to train AI or intelligence systems.
  • AI services are configured to restrict training use of customer content where available.

Need more detail?

For the full legal description of data collection, retention, subprocessors, and AI data handling, read the Privacy Policy. Security questions can be sent to support@quaestorledger.com.