Security & trust

Your financial data, guarded like it's ours.

GST365 handles some of your most sensitive financial data. We treat that as a responsibility, not a checkbox — with encryption, strict access control, a full audit trail, and responsible-AI guardrails built in from day one.

  • AES-256 encryption
  • TLS 1.3
  • Data in India
  • RBAC + SSO
  • GSP/ASP
  • SOC 2 (in progress)
  • ISO 27001 (in progress)
Defense in depth

Six pillars behind every answer and filing.

Security isn't a bolt-on. It runs from how data is encrypted and stored, to who can touch it, to how every AI decision is grounded and logged.

Data protection

Your financial data is encrypted end to end and stays in India.

  • TLS 1.3 in transit, AES-256 at rest
  • Data residency in India
  • Encrypted, versioned backups
  • Field-level encryption for sensitive tokens

Access & identity

Granular control over who can see and file what, for every GSTIN.

  • Role-based access control (RBAC)
  • SSO & multi-factor authentication
  • Per-GSTIN and per-client scoping
  • Session controls & device management

Auditability

Every AI answer and filing action is logged and traceable.

  • Immutable audit log of every action
  • Source-traceable citations on advisory
  • Filing history & change tracking
  • Exportable evidence packs for assessments

AI governance

Responsible AI for a regulated domain — grounded, reviewable, private.

  • Answers grounded in primary law with citations
  • Human-in-the-loop review before filing
  • Your data is never used to train third-party models
  • Confidence scores & 'contested position' labels

Infrastructure

Built for GSTN-grade volumes with resilience in mind.

  • India-based cloud infrastructure
  • GSP/ASP-grade connectivity to the GST portal
  • Redundancy & automated failover
  • Continuous monitoring & alerting

Compliance

Independently reviewed, and building toward formal certification.

  • Regular third-party security reviews
  • SOC 2 & ISO 27001 programs in progress
  • Documented data-processing agreements
  • Privacy-by-design across the product
The data journey

How your data is protected, end to end.

From the moment a request leaves your device to the day it's referenced in an assessment, every hop is encrypted, scoped and logged.

01

Encrypted in transit

Every request travels over TLS 1.3 — nothing leaves your device in the clear.

02

Stored in India

Data comes to rest on India-based infrastructure, encrypted with AES-256.

03

RBAC access

Role-based access control scopes who can see and file what, per GSTIN.

04

Audited on every action

An immutable log records each AI answer and filing for full traceability.

Encryption in transit (TLS 1.3) and at rest (AES-256)
Role-based access control & SSO for teams
Full audit log for every AI answer and filing action
Data residency in India · never used to train third-party models
GSP/ASP-grade connectivity to the GST portal
Regular third-party security reviews
Responsible AI

Cited, human-in-the-loop, and never training third-party models.

GST is regulated territory, so our AI is built to be defensible — grounded in primary law, reviewable before you act, and private to you.

  • Grounded & cited

    Every answer traces back to the CGST/IGST Acts, rules, notifications and circulars.

  • Human-in-the-loop

    Nothing is filed automatically — a person reviews and approves before submission.

  • Private by default

    Your data is never used to train third-party foundation models.

  • Honest about uncertainty

    Confidence scores and 'contested position' labels flag where the law is unsettled.

GST365 provides AI-assisted information and drafting tools grounded in the CGST/IGST Acts, rules, notifications and circulars. Outputs are informational and are not a substitute for professional advice from a qualified Chartered Accountant or advocate, or for a binding advance ruling. Always review before filing.

  • AES-256 encryption
  • TLS 1.3
  • Data in India
  • RBAC + SSO
  • GSP/ASP
  • SOC 2 (in progress)
  • ISO 27001 (in progress)

✦ GST — advisory to answer

Compliance you can trust, security you can prove.

Encrypted, audited and grounded in primary law — start free and see how defensible AI-assisted GST can feel.

No credit card required · Free plan for 1 GSTIN · Windows & macOS