Safety & Security

ZERO-KNOWLEDGE ARCHITECTURE

Powered by Google's Enterprise Infrastructure

A major vulnerability with traditional financial applications is centralized data storage—creating a single target for malicious actors. Offsheets avoids this entirely through a Zero-Knowledge Architecture. By operating directly on top of Google Sheets, we rely on Google’s enterprise-level security. Your financial identity and data stay securely in your Google Drive, not on our servers.

No Stored Credentials

We never ask for, store, or have access to your bank login credentials. All account linking is handled by industry-standard aggregators, ensuring your "keys" never touch our system.

Direct-to-Sheet Sync

Any categorizations or edits you make within Offsheets are communicated directly to your Google Sheet using Google's secure API. Our backend never intercepts, processes, or stores these changes.

Total Control

You retain complete ownership of your data. You can revoke Offsheets's access at any time directly through your Google Account security settings. Because your data is stored in a standard spreadsheet format, you are never locked into our ecosystem.

Security FAQ

Can the Offsheets team see my bank accounts?

No. We have zero visibility into your bank accounts. The application pulls your data directly from your Tiller-powered Google Sheet into your local web browser memory. Because this process is Local-First, your financial information remains strictly between you and Google; it never passes through our servers.

What happens if Offsheets is compromised?

Because we utilize a Zero-Knowledge model, we do not store your financial transactions, balances, or master spreadsheet data. Our configuration database stores only non-descriptive preferences and an alphanumeric Unique User ID (UID). In the unlikely event of a compromise, an attacker would find no financial history, no bank connections, and no descriptive personal data to exploit.

Does "Write Access" mean you can change my data?

Offsheets requests write access strictly to save the updates you actively make within the interface (such as re-categorizing a transaction) back to your Google Sheet. The application is a stateless frontend; it executes only your direct commands and will never autonomously alter, delete, or move your data.