Security by Design
Authentication, tenant isolation, and reviewability are built into the product architecture from the beginning.
NorthernClarity SystemsBook a DemoTrust Center
NorthernClarity is designed around secure authentication, tenant isolation, transparent AI, and modern cloud infrastructure.
Our principles
Authentication, tenant isolation, and reviewability are built into the product architecture from the beginning.
Customer files are processed for the requested finance workflow and remain under customer ownership and control.
Finance professionals review AI-generated outputs before they are used for reporting or decisions.
Recommendations are designed to show confidence, evidence, and review status instead of hiding the reasoning.
Legal entity
NorthernClarity Systems Oy is registered in Finland and operates the public website, Finance AI Workspace, and related NorthernClarity product services.
Legal Entity
NorthernClarity Systems OyInfrastructure
The finance workspace is built on managed Google Cloud and Firebase services, with the finance backend deployed in Europe and finance runtime guardrails separated from other products.

VVertex AIFinance AI is operated on Google Cloud and Firebase infrastructure in European regions for the current production setup. Customer-specific data residency requirements can be reviewed during onboarding.
The workspace uses Firebase App Hosting, Firebase Authentication, Cloud Run, Cloud SQL, Cloud Storage, and Vertex AI in the finance operating model.
Traffic is served over HTTPS/TLS with security headers on the public site and workspace.
Finance data is stored with tenant and project context so customer workspaces remain separated in the backend model.
AI & Data
Finance AI is designed to process customer data for the requested workflow. AI can be wrong, so outputs are built for human review before reporting or decision-making.
Auditability
Recommendations are designed to show their path to review, from account classification and confidence to evidence, human review, and audit trail context.
Access control
The product is designed around authenticated users, controlled tenant membership, and explicit backend checks for protected finance workflows.
Authenticated access through Firebase Authentication.
Firebase ID token verificationEvery request is verified before finance data is accessed.
Backend token validationFinance workspaces are separated by tenant context and backend membership checks.
Tenant-scoped persistenceOwner, admin, member, and viewer roles support controlled workspace access.
Role-based access modelResponsible AI
Outputs should always be reviewed. Explainability, source context, confidence, and review steps are core design goals for finance use cases.
Compliance
Enterprise capabilities
These are examples of enterprise deployment requirements, not current certification claims or contractual promises.
FAQ
Finance AI is operated on Google Cloud and Firebase infrastructure in European regions for the current production setup. Customer-specific data residency requirements can be reviewed before production rollout.
NorthernClarity Systems processes customer data to deliver the requested finance workflow. Customer data is not intentionally used by NorthernClarity Systems to train public AI models. Provider-specific terms can be reviewed during onboarding.
Data deletion requests can be submitted through support and are handled according to the applicable customer agreement, privacy policy, and operational requirements.
The workspace uses authenticated access, backend request verification, tenant-scoped persistence, HTTPS/TLS, and controlled storage paths for finance workflows.
Customers retain ownership of uploaded documents, reports, and finance data. NorthernClarity Systems processes them to provide the requested service.
Access is limited to operating, supporting, and improving the service under the applicable customer agreement. Customer-specific access requirements can be reviewed during implementation.
Customer-managed deployments are discussed as an enterprise capability for larger deployment requirements.
SSO is planned as part of the enterprise capabilities roadmap and can be discussed for enterprise deployments.
Questions about security?
For specific data residency, procurement, or enterprise access requirements, contact us.