Security & compliance
Ledge is built for finance teams handling sensitive accounting data. Security is not an add-on. It is foundational to how the platform operates.
π‘ SOC 1 Β· π‘ SOC 2 Β· β ISO 42001 Β· π GDPR
Data handling
Your data stays in your environment, protected by layered security controls.
Ledge AI writes bespoke code for each workflow. Once written, that code runs the same way every period. Auditable, repeatable, and explainable. β Same code, same results every close β No variable outputs or hallucinations β Glass-box logic visible at every step
Ledge protects your financial data with layered security controls across infrastructure, access, and operations. β Encryption in transit and at rest β Periodic third-party penetration testing β Data isolation between customers
Access controls
Integrates with your existing identity infrastructure and enforces granular, role-based permissions across your entire finance team.
Integrates with your existing identity provider
Granular permissions for who can view, edit, approve, and post
Use your existing NetSuite routing, approve in Ledge and auto-post, or require dual approval in both
Your full team accesses the platform without security gated by licensing
β Certified NetSuite SuiteApp
Ledge β NetSuite Bi-directional sync Read: GL, segments, transactions Write: JE posting only (human-approved)
NetSuite integration
Ledge is a Certified NetSuite SuiteApp (Built for NetSuite). The integration uses continuous bi-directional sync through NetSuiteβs official SuiteApp framework, not custom API connections or third-party middleware. β Read access to GL accounts, segments, subsidiaries, and transactions β Write access for JE posting, only after human approval β Auto-detection without modifying NetSuite configuration β Full traceability: every action, comment, and approval logged
Audit trail
Ledge produces a complete, traceable record for every workflow. No separate audit prep project required. β Full traceability: every agent action is logged with data, logic, and output β Working paper lineage: source data tabs, live formulas, and rollforwards β Human-in-the-loop: nothing posts without explicit human approval β Flexible authorization: use your existing NetSuite routing, approve in Ledge with auto-post, or dual approval
09:01 Agent pulled GL balance from NetSuite 09:01 Agent built workpaper with rollforward 09:02 $2,450 variance flagged for review 09:14 Sarah Chen approved in Ledge 09:15 Re-approved and posted in NetSuite
Vendor review
Your IT and legal teams can evaluate Ledge quickly with everything they need in one place.
Self-serve access to SOC reports, compliance certifications, and security policies
Annual third-party penetration test reports available under NDA
Standard DPA available for review and execution
FAQ
Ledge operates on cloud infrastructure with encryption at rest and in transit. Detailed infrastructure documentation is available at trust.ledge.co.
Yes, but only for journal entry posting, and only after explicit human approval. You choose the approval model: use your existing NetSuite approval routing, approve in Ledge and auto-post, or require dual approval in both systems. All other interactions are read-only.
No. Customer data is never used for model training. It is processed exclusively within your environment to execute your accounting workflows.
Yes. SOC 1 and SOC 2 reports are available through trust.ledge.co or upon request from your account team.
Yes. Ledge supports SSO and integrates with your existing identity provider. Contact your account team to confirm compatibility.
Talk to our team about your security requirements. We will get your IT and legal teams everything they need.
We're on a mission to automate and simplify finance operations for teams working at scale.
325 Hudson St, New York, United States 10013
Leonardo da Vinci St 14
Tel Aviv, Israel
6473118
